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IETF  effort  promises 
fewer  net  failures 


BY  TIM  GREENE  AND  DENISE  DUBIE 

The  IETF  has  nearly  completed  a  protocol  that 
could  address  perhaps  the  major  underlying  cause 
of  network  breakdowns:  misconfigured  equipment. 

The  thrust  behind  NetConf,  which  could  be 
adopted  by  year-end,  is  to  reduce  the  programming 
effort  involved  in  automating  device  configuration. 
The  goal  is  to  generate  better  configuration  tools  and 
encourage  faster  updating  of  these  tools  when  net¬ 
work  equipment  vendors  upgrade  the  software  on 
their  machines,  industry  experts  say 

Software  that  keeps  people  out  of  the  loop  as 
much  as  possible  when  configuring  switches  and 
routers  is  a  key  to  improving  uptime,  says  Jeffrey 


Nudler,  a  senior  analyst  at  Enterprise  Management 
Associates.  “The  possibility  of  failures  would  be 
much  reduced  if  you  consider  that  changing  device 
configuration  causes  60%  of  downtime  due  to 
human  error,”  he  says. 

Rather  than  rely  on  typing  command-line  inter¬ 
faces  or  scripts  that  mimic  humans  entering  CLIs, 
NetConf  would  use  XML  to  configure  devices  and  to 
more  efficiently  tap  state  and  configuration  data 
stored  on  devices,  says  Andy  Bierman,  chairman  of 
the  lETF’s  Network  Configuration  Working  Group. 
“XML  is  just  so  much  better  at  separating  data  from 
metadata  and  also  adapting  to  the  CLl,”he  says. 

See  NetConf,  page  14 


Bechtel  says 
move  to  IPv6 
is  all  about 
business 

BY  CARA  GARRETSON 

Bechtel’s  Fred  Wettling  has 
heard  the  often-quoted  refrain 
that  U.S.  corporations  aren’t  mov¬ 
ing  to  the  next  version  of  IP  —  but 
he  doesn’t  buy  it. 

“A  lot  of  companies  have  some 
level  of  IPv6  going  on,  they’re  just 
not  advertising  it,”  says  Wettling, 
manager  of  IT  strategy  and  stan¬ 
dards  for  Bechtel.  His  job  is  to  in¬ 
vestigate  emerging  standards  and 
protocols  to  decide  which  are 
right  for  the  $17  billion  global 
contracting  company.  Having 
identified  IPv6  as  a  “business 
imperative”  for  the  company, 
See  Bechtel,  page  16 


^WiderNet 

won’t  find 
this  book  on 
Oprah’s  list 

But  Routing  TCP/IP  remains 
a  hit  for  author,  Cisco  Press. 

nine-year 
history. 

“One  of  the 

most  exciting  things  we  have 
planned  for  2005  is  the 
release  of  the  second  edi¬ 
tion,”  says  John  Kane,  editor 
in  chief  of  Cisco  Press. 

“That’s  a  flagship  product  of 
ours,”  he  adds. 

See  Cisco  Press,  page  18 


BY  CAROLYN  DUFFY  MARSAN 

Think  of  it  as  Harry  Potter 
for  the  network  set. 
Publisher  Cisco  Press 
next  week  will  release  a  new 
edition  of  its  best-selling 
book,  Routing  TCP/IP  by  Jeff 
Doyle.  Cisco  Press  officials 
say  it  is  one  of  the  biggest 
releases  in  the  company’s 
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NEWSbits 


SBC  to  retain  AT&T  name,  report  says 

■  Although  no  official  word  has  come  from  the  company  press  reports  contin 
ue  to  become  more  emphatic  regarding  SBC’s  apparent  intent  to  use  the 
AT&T  corporate  and  brand  name  instead  of  its  own  once  its  acquisition 
of  the  130-year-old  storied  franchise  has  cleared  regulatory  hurdles.  USA 
Today  has  reported  that  the  decision  to  go  with  AT&T  has  been  reached 
by  SBC  executives,  although  the  newspaper  said  its  sources  indicated  that 


TheGoodTheBadTheUgly 

<  Hey,  hey,  hey,  that's  my  Web 

address.  Comedian  Bill  Cosby  last  week  was 
awarded  control  of  the  Internet  domain  name 
www.fatalbert.org  by  a  United  Nations  panel, 
according  to  an  Associated  Press  report.  Cosby  had 
complained  that  the  URL  owner  infringed  on  his 
trademark  rights  for  the  Fat  Albert  character,  plus 
that  the  URL  was  being  used  to  send  Internet  traffic 
to  a  sex-oriented  Web  site. 


SBC  might  retain  the  SBC  brand  in  some  capacity  perhaps  within  the  13  states  it 
now  provides  with  local  phone  service. The  FCC  is  expected  to  take  up  the 
SBC/AT&T  deal  at  its  Oct.  28  meeting.  SBC  CEO  Ed  Whitacre  had  indicated  earlier 
that  he  was  leaning  toward  retaining  the  AT&T  moniker. 


Security  vendors  flag  own  flaws 

■  Users  of  Symantec’s  AntiVirus  Scan  Engine  are 
being  advised  to  upgrade  their  software  after  the 
company  revealed  a  critical  security  bug  in  the 
product.The  flaw  could  theoretically  let  an  attacker 
take  control  of  an  affected  system,  according  to 
Symantec.  Because  of  a  bug  in  the  Scan  Engine’s 
administrative  interface,  it’s  possible  for  an  attacker 
to  take  over  a  system  running  the  software  by  cre¬ 
ating  a  specially  crafted  HTTP  request,  Symantec 
says.  The  attacker  would  need  to  gain  access  to  an 
exposed  administrative  port  on  the  server  for  this 
attack,  the  report  said.  Users  of  versions  4.0  and  4.3 
of  the  Scan  Engine  product  are  advised  to  upgrade 
to  Version  4.3.12.  Symantec  was  not  the  only  securi¬ 
ty  vendor  last  week  to  report  a  major  security  bug 
in  its  products.  Kaspersky  Labs  also  reported  a  sim¬ 
ilarly  critical  flaw  in  its  Antivirus  Library,  which  is 
used  by  a  wide  range  of  the  company’s  anti-virus 
products. 

Check  Point  buys  IDS  vendor 

■  Check  Point  Software  last  week  announced  the 
acquisition  of  Sourcefire  for  $225  million. 
Sourcefire  was  founded  in  2001  by  Martin  Roesch 
to  commercialize  the  open  source  intrusion-detec¬ 
tion  system  he  had  created  and  fostered  through 
communal  input.  In  a  conference  call  with  Wall 
Street  analysts  last  week,  Check  Point  CEO  Gil 
Shwed  said  Sourcefire  was  not  profitable,  though 
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“It  is  to  me  a  fundamental  right 
to  have  access  universally  to 
information. . .  .This  is  a  civil 
rights  issue  as  much  as 
anything  else.” 

San  Francisco  Mayor  Gavin  Newsom,  discussing  his  city's  efforts 
to  provide  universal  Wi-Fi  access. 


he  expected  to  see  that  change  next  year. 
Sourcefire  might  contribute  up  to  8%  of  Check 
Point’s  revenue,  he  said.  Check  Point  plans  to  “keep 
the  Snort  technology  open,”  he  said.  He  added  that 
Check  Point  was  impressed  by  Sourcefire’s  Defense 
Center  event-management  console  and  the  Real¬ 
time  Network  Awareness  sensor  for  analyzing  secu¬ 
rity  threats  by  reviewing  internal  network  traffic 
flows.  Sourcefire  has  140  employees,  and  Wayne 
Jackson,  Sourcefire’s  CEO,  said  plans  call  for 
Roesch  and  other  Sourcefire  employees  to  join 
Check  Point. 

Ex-PeopleSoft  CEO  joins  rival 

■  Craig  Conway,  ousted  as  PeopleSoft’s  CEO,  is  tak- 


“ Model  of  the  Management 
Layer  Molecule:  Stacks  of  man¬ 
agement  particles  on  top  of  the 
single  worker  particle,  increas¬ 
ing  the  heat  on  the  worker.  ” 

Tom  Mehrtens  is  the  winner  of  our  latest  Weekly 
Caption  Contest  Check  back  each  week  for  a  new 
contest.www.networkworld.com/weblogs/layer8 


JP  Morgan’s  gag  order.  You  know  how  hard  it 

can  be  to  find  non-vendor  speakers  at  network  and  IT  conferences? 
JP  Morgan  Chase  made  it  even  harder  last  week  when  it  nixed  a  sched¬ 
uled  presentation  about  the  affect  of  Sarbanes-Oxley  on  IT  service  and 
asset  management  by  Mark  Bradley,  senior  network  engineer  and  team 
lead  at  the  financial  firm.  A  Peregrine  Systems  employee,  who  broke 
the  news  to  attendees  at  the  IT  Infrastructure  Management  Conference 
&  Expo  2005  in  Orlando,  wound  up  doing  the  presentation  solo. 

Firefox  site  hacked.  For  the  second  time  in  three 
months,  a  security  breach  has  shut  down  the  marketing  Web  site  used 
to  promote  the  Firefox  browser.  Late  last  Monday,  members  of  the 
Spread  Firefox  community  were  notified  that  their  Spreadfirefox.com 
site  had  been  hit  by  attackers  looking  to  exploit  a  bug  in  the  TWiki  col¬ 
laboration  software,  which  had  been  running  on  the  server.  The  Mozilla 
Foundation  does  not  believe  that  any  sensitive  information  was  com¬ 
promised  in  the  attack,  but  it  is  encouraging  the  approximately 
100,000  Spread  Firefox  members  to  reset  their  passwords. 


ing  a  small  step  back  into  the  CRM  software  market 
—  and  another  jab  at  his  nemesis,  Oracle.  Hosted 
CRM  provider  Salesforce.com  said  last  week  that 
Conway  is  joining  its  board  of  directors. 
Salesforce.com  CEO  Marc  Benioff  praised  Conway 
as  a  veteran  executive  whose  strong  operational 
skills  and  knowledge  of  the  CRM  industry  will  ben¬ 
efit  Salesforce.com. The  company  is  an  increasing¬ 
ly  fierce  rival  of  Oracle,  which  acquired  PecpleSoft 
last  year,  soon  after  PeopleSoft’s  board  dismissed 
Conway.  Conway  has  stayed  away  from  the  IT 
industry  since  leaving  PeopleSoft  one  year  ago,  at 
the  height  of  its  resistance  to  Oracle’s  hostile- 
takeover  bid. 

Sprint  Nextel  sues  Vonage 

■  A  unit  of  Sprint  Nextel  last  week  sued  Vonage 
and  another  VoIP  provider,  alleging  that  the  com¬ 
panies  are  infringing  on  its  patents.  Sprint  says  the 
companies  violated  seven  patents  on  technology 
for  processing  and  delivering  packetized  voice  and 
data,  including  VoIP  Its  suit  in  U.S.  District  Court  for 
the  District  of  Kansas  seeks  an  injunction  against 
further  infringement  and  unspecified  monetary 
damages.  In  addition  to  Vonage,  the  suit  names 
Voiceglo  Holdings.  Vonage  is  one  of  the  biggest 
VoIP  service  providers  in  the  U.S.,with  more  than  1 
million  active  lines,  according  to  the  company. 
Voiceglo  also  provides  packet-based  phone  service 
over  the  Internet.  Vonage  and  Voiceglo  were  not 
immediately  available  for  comment. 
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IT  guru  extols  utility  computing  use 


MWhen  you  look  at  any 
study  of  IT  capacity 
utilization  in  companies 
today,  the  numbers  are 
astoundingly  low.W 

Nicholas  Carr,  author  of  IT  Doesn't  Matter  and 
the  2005  sequel,  The  End  of  Corporate 
Computing. 


BY  ANN  BEDNARZ 

ST.  PAUL,  MINN.  —  IT  thought 
leader  Nicholas  Carr  headlined 
an  event  here  last  week  that 
brought  together  local  IT  execu¬ 
tives  who  debated  the  merits  and 
hitches  of  utility  computing. 

Carr  introduced  his  ideas  about 
how  corporate  computing  is  des¬ 
tined  to  evolve.  He  compared  it 
with  the  emergence  of  public  util¬ 
ities  a  century  ago.  Manufacturers 
used  to  run  their  own  power 
plants,  but  got  out  of  the  electrici¬ 
ty  supply  business  once  more 
affordable,  reliable  and  efficient 
services  became  available  from 
public  utilities. 

In  a  similar  way,  Carr  expects  IT 
to  go  from  being  an  asset  that 
companies  build  and  own,  to  a 
service  that  they  purchase  from 


utility  providers.  He  acknowl¬ 
edged  the  idea  that  utility  com¬ 
puting  has  been  touted  for  a 
long  time,  but  has  yet  to  fulfill 
expectations. 

“Skepticism  is  in  many  ways  jus¬ 
tifiable  and  a  smart  approach  at 
this  early  stage,”  he  said.  None¬ 
theless,  Carr  thinks  it’s  time  for  IT 
executives  to  begin  challenging 
their  skepticism. 

Underutilization  of  existing  IT 
assets  will  help  drive  the  migra¬ 
tion  to  the  utility  world.  “When 
you  look  at  any  study  of  IT  capac¬ 
ity  utilization  in  companies 
today  the  numbers  are  astound¬ 
ingly  low?  Carr  said.  Analyst  firms 
put  typical  server  capacity  in  the 
15%  to  30%  range,  PC  usage  at 
about  5%  and  storage  capacity  at 
about  25%  to  50%. 


“If  you  can  centralize  this  stuff, 
you  get  much  higher  capacity  uti¬ 
lization,  much  more  efficient  use 
of  labor  and  a  much  more  effi¬ 
cient  model  for  distributing  soft¬ 
ware,”  Carr  said. 

Another  driver  will  be  CIOs’ 
desire  to  stem  the  tide  of  money 
and  resources  dedicated  to  basic 


IT  maintenance,  which  consumes 
about  70%  to  90%  of  typical  IT 
budgets,  according  to  Carr.  “The 
only  way  to  escape  that  squeeze  is 
to  get  rid  of  that  infrastructure,  get 
rid  of  those  assets  that  you’re 
forced  to  maintain,”  he  said. 

One  outfit  that  knows  this  first¬ 
hand  is  the  city  of  Minneapolis. 
The  city  outsourced  its  network, 
systems,  data  center  administra¬ 
tion,  desktops  and  disaster-recov¬ 
ery  services  to  Unisys  in  2003  in 
a  move  expected  to  save  the  city 
between  $25  million  and  $30 
million  over  the  life  of  the  seven- 
year  contract.  Going  with  an  out¬ 
sourcer  has  allowed  the  IT  orga¬ 
nization  to  focus  less  on  mainte¬ 
nance  and  more  on  business 
process  reengineering  and 
improving  business  outcomes, 
said  Bill  Beck,  director  of  busi¬ 
ness  development  for  computer 
operations. 

However,  while  the  city  exten¬ 
sively  uses  outsourcing,  the  ar¬ 
rangements  are  based  on  fixed 
capacity  and  don’t  yet  incorpo¬ 
rate  the  usage-based, variable  pric¬ 
ing  and  delivery  models  that  char¬ 
acterize  the  utility  computing 
ideal.  One  area  Beck  would  like  to 
see  more  flexible  options  emerge 
is  in  application  outsourcing. 

“There’s  a  gross  lack  of  true 
application  service  providers 
[ASP]  todajf  he  said.  It’s  not  hard 
to  find  an  ASP  that  will  host  an 
application,  but  finding  one  that 
will  host,  maintain  and  dole  out 
access  on  an  on-demand  basis  is 
difficult,  Beck  said. 

For  example,  if  there  are  250  dif¬ 
ferent  FeopleSoft  modules,  Beck 
would  like  to  give  staff  access  to 
any  of  those  modules  whenever 
they  need  it.  If  it’s  a  seasonal  need, 
he  doesn’t  want  to  pay  for  a 
license  year-round.That’s  the  kind 
of  service  the  city  is  looking  for 
now  —  and  has  been  for  a  couple 
of  years,  Beck  said. 


Andrew  Tessier  shared  some  of 
the  successes  Park  Nicollet  Health 
Services  has  had  outsourcing  cer¬ 
tain  IT  functions,  including  desk¬ 
tops.  Over  the  last  two  years  the 
healthcare  provider  has  reduced 
its  cost  of  ownership  on  worksta¬ 
tions  by  about  250%  and  cut  help 
desk  response  time  from  a  few 
days  to  an  hour,  said  Tessier,  direc¬ 
tor  of  technical  services. 

Park  Nicollet  is  billed  on  a  per- 
seat  basis,  but  there  are  incentives 
for  Tessier  to  improve  the  tech¬ 
nologies  supported.  In  its  latest 
desktop  contract,  Park  Nicollet 
negotiated  fees  down  by  35%  after 
committing  to  reduce  the  number 
of  workstation  images  supported 
from  18  to  two,  Tessier  said.  “It’s  a 
lot  easier  for  them  to  manage,  so 
we  share  the  efficiencies,”  he  said. 

But  while  it  works  for  some 
applications,  outsourcing  isn’t 
suited  to  every  system,  Tessier 
said.  It  depends  on  the  complexi¬ 
ty  and  maturity  of  the  technology 
One  area  Park  Nicollet  isn’t  ready 
to  let  go  of  is  its  electronic  records 
management  system,  for  example. 

That’s  the  beauty  of  utility  com¬ 
puting;  companies  can  use  ser¬ 
vice  providers  for  pieces  of  their 
infrastructure  as  it  makes  sense, 
without  sending  everything  out  at 
once,  Carr  said. 

It’s  becoming  increasingly  possi¬ 
ble  to  move  to  a  utility  computing 
model,  but  it  won’t  happen 
overnight,  Carr  said.  “What  it’s 
going  to  take  is  an  attitudinal 
change  among  the  users  of  IT,  that 
leap  of  faith  that  allows  you  to 
take  what  you  have  invested  your 
own  blood,  sweat  and  tears  in  — 
and  your  company’s  money  —  to 
build  and  say  ‘OK,  the  time  has 
come  to  get  this  from  an  outside 
supplier.’”  Managed  hosting 
provider  VeriCenter  organized  the 
event,  and  Network  World  moder¬ 
ated  the  discussion.  ■ 
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Google’s  partnership  with  Sun 
draws  skeptical  analysis 


BY  JOHN  FONTANA 

Google  may  be  a  media  darling  flush  with  cash,  but 
any  attempt  on  its  part  to  muscle  into  productivity 
and  collaborative  applications  will  find  the  company 
in  an  underdog  role  it  might  not  be  ready  to  handle, 
according  to  IT  professionals  and  other  industry 
experts. 

Google  last  week  laid  out  what  many  saw  as  an 
underwhelming  partnership  deal  with  Sun  to  distrib¬ 
ute  its  toolbar  with  Sun’s  Java  Runtime  Environment 
software  —  a  move  that  underscored  Google’s  focus 
on  finding  more  eyeballs  to  look  at  its  advertising. 
The  Sun  partnership  was  seen  as  a  dud  because  it 
came  after  days  of  red-hot  hype  suggesting  that 
Google  would  add  to  its  mail  and  instant-messaging 
services  and  begin  offering  over  the  Web  Sun’s  Star- 
Office  or  open  source  OpenOffice. 

Critics  were  quick  to  point  out  that  both  produc¬ 
tivity  suites  are  not  designed  for  Web-based  but 
rather  client-based  deployment,  just  like  Microsoft 
Office,  which  was  being  portrayed  as  the  target  of 
Google’s  gambit. 

“Could  Google  offer  more  of  a  Web-based  technol¬ 
ogy  built  around  OpenOffice  technology?  Yes  it 
could,”  says  Chris  LeTocq,  an  analyst  with  Guernsey 
Research.  “What  I  am  saying  is  that  there  is  a  lot  of 
great  intellectual  property  associated  with  Open- 
Office  and  Google  has  an  opportunity  using  Open- 
Office  to  redefine  what  desktop  productivity  means.” 

LeTocq  says  for  a  lot  of  users  all  they  need  in  terms 
of  a  rich-text  editor  is  something  that  works  with  their 
e-mail.  “Do  I  see  Google  distributing  OpenOffice  or 
StarOffice  as  is?  I  don’t  see  that  happening,”  he  says. 

LeTocq  says  services-based  computing  —  whether 
referred  to  as  Web  2.0,  Web  services  or  component 
software  —  is  a  natural  for  Google  to  exploit  using 


the  underlying  technology  of  OpenOffice. That  tech¬ 
nology  includes  text  editing  and  spreadsheets  used 
as  features  within  other  applications,  such  as  a  rich- 
text  editor  within  e-mail. 

That  possibility  was  echoed  in  other  reactions  to 
the  Google-Sun  partnership.  Goldman  Sachs  analyst 
Rick  Sherlund  wrote  in  a  research  note:  “We  suspect 
both  Yahoo  and  Google  will  want  to  extend  their  e- 
mail  products  to  look  a  lot  richer  and  more  like 
Microsoft  Outlook  (adding  calendar  and  contact 
management  to  e-mail)  and  may  decide  to  throw  in 
spreadsheet  and  word  processing  capabilities  while 
they  are  at  it  to  be  more  competitive  with  Office.” 

A  Google  spokesman  refused  to  comment  on  any 
future  intentions  even  as  Yahoo  last  week  bought 
Upcoming.org  for  its  calendaring  technology. 

“Google  is  going  to  see  what  they  can  do,”  says 
Bruce  Elgort,the  manager  of  e-commerce  for  a  large 
manufacturer  he  did  not  want  to  be  named.  “But 
what  they  have  now  is  tons  of  resources  and  brand 
recognition.  It  could  be  a  flop  just  like  Netscape’s 
[foray  into  collaboration] .  It  could  go  either  way!’ 

Elgort  says  Google  can  use  Asynchronous  Java¬ 
Script  and  XML  (AJAX)  to  create  the  next  Excel  or  a 
new  Word.  AJAX  is  a  set  of  programming  controls 
that  lets  users  create  Web-based  applications  that 
behave  like  desktop  software.  Google  has  exploited 
AJAX  for  some  of  its  most  eye-popping  services  such 
as  Gmail  and  Google  Maps. 

“But  the  question  is,  will  the  enterprise  adopt  it?” 
Elgort  asks.“It  would  take  years  and  years  for  Google 
to  become  a  vendor  of  enterprise-class  software.” 

IBM  and  Microsoft  are  working  to  evolve  their  pro¬ 
ductivity/collaboration  software  to  the  network- 

See  Partnership,  page  14 
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Grid  taking  shape  in  enterprise  nets 

End  users,  vendors  discuss  how  the  technology  can  maximize  capacity  and  more  efficiently  process  jobs. 


Gridlock 


Enterprise  grids  are  becoming  more  mainstream,  but  users 
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SOURCE:  SURVEY  OF  60  USERS  BY  THE  451  GROUP,  OCTOBER  2005 


BY  DENISE  DUBIE 

BOSTON  —  Grid  computing 
continues  to  gain  ground  in  enter¬ 
prise  IT  as  the  technology  proves 
its  mettle  solving  practical  busi¬ 
ness  problems  without  requiring 
massive  investments. 

Companies  such  as  Bank  of 
America,  Credit  Suisse  First 
Boston  and  Johnson  &  Johnson 
last  week  converged  at  the  inau¬ 
gural  GridWorld  conference  in 
Boston,  along  with  some  400 
attendees,  to  talk  technology  and 
share  experiences. 

Touting  the  business  benefits  of 
grid,  enterprise  IT  managers  and 
industry  watchers  detailed  the 
practical  applications  of  the  once 
mostly  academic  technology 

“Grid,  combined  with  Web  ser¬ 
vices,  forms  a  new  ecosystem  that 
has  broad  applicability”  said 
Robert  Cohen,  a  fellow  at  the 
Economic  Strategy  Institute. 

Michael  Oltman,  vice  president 
of  Advantage  Risk  Processing 
Development  at  Bank  of  America 
in  Chicago,  told  attendees  it  took 
six  months  to  develop  a  grid 
based  on  DataSynapse’s  Grid 
Server  software  that  supports  80 
CPUs.  The  resultant  system 
reduced  the  time  it  takes  to  run 


one  application  from  90  minutes 
to  20  minutes,  and  another  from 
four  hours  to  40  minutes. 

Once  that  proved  successful, 
Oltman  said  the  bank  started  to 
scale  it  up,  first  to  150  servers,  then 
225  and  then  600.  The  90-minute 
job  was  reduced  to  4  minutes,  the 
four-hour  job  to  20  minutes. 

Today,  the  bank  has  some  3,000 
machines  on  the  grid  —  includ¬ 
ing  Citrix  servers  and  desktops  — 
spanning  four  locations. 

Bank  of  America  anticipates  the 
grid  will  save  tens  of  millions  of 
dollars  over  three  years,  but  other 
justifications  are  just  as  signifi¬ 
cant.  The  bank  can  run  complex 
risk  scenarios  during  the  day 
instead  of  overnight,  and  the  grid 
is  inherently  more  stable  because 
failure  of  any  one  component 
doesn’t  take  the  system  down. 

The  grid  also  has  dramatically 
improved  system  utilization.  “We 
used  to  freak  out  if  server  utiliza¬ 
tion  got  up  to  75%, ”  he  says.  Now 
the  bank  is  just  concerned  about 
whether  it  has  enough  servers. 
Utilization  on  the  core  servers  is 
about  90%,  24  hours  per  day  and 
scaling  up  simply  requires  the 
addition  of  more  blades. 


Moths  to  flame 

With  grids  becoming  more 
mainstream,  vendors  such  as  IBM, 
Platform  Computing,  Sun,  SAS  and 
Univa  are  launching  services, 
products  and  partnerships. 

IBM  used  the  show  to 
announce  that  it  will  load  its  IBM 
eServer  platforms  running  both 
AIX  and  Linux  with  Univa’s  ver¬ 
sion  of  the  Globus  grid  applica¬ 
tion,  which  includes  software  ser¬ 
vices  and  libraries  for  resource 
monitoring,  discovery  and  man¬ 
agement  along  with  security  and 
file  management  (see  story  in 
Enterprise  Computing  section, 
page  33).  Big  Blue  separately 
announced  services  to  verify 
applications  as  being  grid  ready 

In  the  same  vein,  Sun 
announced  its  Grid  Readiness 
Offer,  which  the  company  says 
will  give  software  vendors  quick 
access  to  resources  needed  to 
build  on  grid  computing  tech¬ 
nologies  from  Sun. 

SAS  detailed  a  partnership  with 
Platform  Computing  that  would 
integrate  grid  management  func¬ 
tions  into  its  data  integration  and 
data  mining  products.  Earlier  this 
year,  SAS  was  among  the  first  ven¬ 
dors  to  partner  with  IBM  on  its 


Grid  and  Grow  initiative,  which  is 
designed  to  get  companies 
across  vertical  industries  started 
with  grid. 

“GridWorld  demonstrated  that 
this  technology  is  starting  to  be 
adopted  in  areas  outside  of  the 
traditional  high-performance 
computing  markets”  said  Dan 
Kusnetzky  a  vice  president  with 
IDC.  “The  fact  that  Platform 
Computing  and  SAS  were  speak¬ 
ing  about  helping  SAS  users  apply 
this  technology  without  having  to 
rewrite  everything  supports  the 
belief  that  this  technology  is  mov¬ 
ing  out  of  the  lab  and  into  the  cor¬ 


porate  data  center” 

That  isn’t  to  say  all  grid  prob¬ 
lems  have  been  licked.  Research 
by  The  451  Group  shows  software 
licensing,  security  and  bandwidth 
issues,  among  other  things,  can 
hinder  grid  rollouts  (see  graphic). 

Because  Bank  of  America’s  grid 
supports  mostly  batch  processing 
using  proprietary  applications, 
Oltman  said  he  didn’t  have  any 
software  licensing  issues  others 
might  encounter. 

But  he  did  run  into  some  cultur¬ 
al  issues.  Separate  groups  often 
don’t  want  to  share  computing 
resources  and  as  a  result  “grid  fief- 
doms”can  emerge,  Oltman  said. 

He  got  around  it  by  adopting  a 
federated  model,  where  each 
business  is  guaranteed  capacity 
and  only  shares  resources  when 
they  are  not  in  use.The  minute  the 
original  owner  needs  them  back 
they  are  restored.“This  was  impor¬ 
tant  for  acceptance  of  the  con¬ 
cept,”  Oltman  said. 

Despite  the  challenges  that 
remain,  industry  watchers  agree 
that  grid  is  here  to  stay  Many  are 
starting  to  refer  to  the  technology 
as  service-oriented  infrastructure, 
the  perfect  complement  to  ser¬ 
vice-oriented  applications. 

The  Holy  Grail,  said  Steve  Yatko, 
global  head  of  IT  research  and 
development  at  Credit  Suisse 
First  Boston,  is  service-oriented 
computing  based  on  grid.  And 
the  underpinnings  are  virtualiza¬ 
tion,  automation  and  commodity 
solutions. 

“No  one  company  can  solve 
this,”  Yatko  said.  “It  has  to  be  a 
community  of  companies,  stan¬ 
dards  bodies  and  academic 
institutions.”* 


ISP  spat  leaves  customers  disconnected 

Charges  fly  in  peering  dispute  between  Level  3  and  Cogent 


IF  **The  root  cause  of  this  is  Level  3’s  strong 

desire  to  pressure  Cogent  into  raising  our 
m  prices. They  have  been  very  vocal  and  very 
upset  at  our  gain  in  market  share  and  our 
pricing  policy.” 

Dave  Schaeffer,  Cogent  CEO 


BY  STACY  COWLEY,  IDG  NEWS  SERVICE 

A  financial  dispute  between  two  major 
Internet  backbone  providers  has  led  to 
dropped  traffic  between  their  networks  —  a 
high-stakes  game  of  chicken  that’s  angering 
customers  affected  by  the  network  disruptions. 

Last  Wednesday  Level  3  Communications  ter¬ 
minated  its  peering  agreement  with  Cogent,  a 
step  Level  3  says  it  took  after  months  of  fruit¬ 
less  negotiations.  Peering  is  a  service  agree¬ 
ment  common  among  ISPs,  which  directly 
connects  their  networks  and  exchanges  traffic 
without  charge. 

Peering  is  mutually  advantageous  when  both 
partners  exchange  similar  traffic  volumes,  but 
Level  3,  in  Broomfield,  Colo.,  says  it  was  carry¬ 
ing  the  bulk  of  the  traffic  in  its  deal  with 
Cogent,  in  Washington,  D.C.’The  larger  compa¬ 
ny  ends  up  disadvantaged  because  it  ends  up 
providing  essentially  free  capacity’ says  Level  3 
spokeswoman  Jennifer  Daumier.  “In  Cogent’s 
case,  we  determined  that  the  arrangement  was 
not  reasonable  or  commercially  viable.” 


Cogent  CEO  Dave  Schaeffer  disputes  Level 
3’s  characterization  and  says  the  dropped 
peering  arrangement  is  Level  3’s  attempt  to 
play  hardball  with  a  rival  that  has  been  under¬ 
cutting  it  on  pricing. 

“The  root  cause  of  this  is  Level  3’s  strong 
desire  to  pressure  Cogent  into  raising  our 
prices,”  Schaeffer  says.  “They  have  been  very 
vocal  and  very  upset  at  our  gain  in  market 
share  and  our  pricing  policy 
Large  businesses  and  those  for  which  net¬ 


work  connectivity  is  critical  generally  have 
redundant  agreements  with  multiple  ISPs.  For 
them,  the  dispute  between  Cogent  and  Level  3 
is  an  annoyance  but  not  a  major  problem;  they 
can  rely  on  their  other  vendors  to  route  traffic 
across  Cogent  and  Level  3’s  networks.  For  cus¬ 
tomers  who  are  “single  homed”  solely  to  the 
network  of  either  Cogent  or  Level  3,  however, 
the  dropped  connection  can  leave  some  Web 
sites  unreachable. 

See  Peering,  page  80 
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Security  mgmt  advances 

Three  new  products  hitting  the  market 


BY  ELLEN  ME3SMER 

Choices  in  security  event  man¬ 
agement  continue  to  grow  as 
three  SEM  vendors  debut  prod¬ 
ucts  that  ease  central  collection 
and  analysis  of  log  and  event 
data  generated  by  firewalls,  intru¬ 
sion-detection  systems  and  other 
net  gear. 

ArcSight  next  month  plans  to 
make  available  an  updated  ver¬ 
sion  of  its  Enterprise  Security 
Management  software,  adding  a 
way  to  pinpoint  suspicious  activi¬ 
ty  of  monitored  network  equip¬ 
ment  based  on  patterns  of  time 
and  activity  of  insiders  in  real 
time,  as  well  as  historical  analysis. 

Competitor  Network  Intelli¬ 
gence  this  week  is  set  to  trot  out 
the  third  version  of  its  SEM  prod- 

Product  sampler 

A  look  at  new  security  event  management  products. 


Vendor 

Product 

Pricing 

ArcSight 

Enterprise  Security  Management  3,5,  which  adds 
the  ability  to  pinpoint  suspicious  behavior  based 
on  time  elements, 

Starts  at  $50,000 

High  Tower 

SEM  3210,  which  collects  and  analyzes  data  from 

Starts  at  $60,000 

Software 

IDS,  firewalls,  router,  switches. 

Network 

Intelligence 

enVision  3,  which  adds  regulatory-compliance  alerting. 

$120,000 

evidence  of  continuous  improve¬ 
ments  they’ve  seen  for  half  a 
decade  from  the  SEM  vendors, 
they  say  this  week’s  product  roll¬ 
out  are  par  for  the  course  in  a 
market  overcrowded  with  con¬ 
tenders,  ripe  for  consolidation 
and  where  products  are  too 
expensive. 

“At  $125,000  to  $150,000  just  to 
get  started,  it’s  way  too  high,”  says 
Gartner  analyst  John  Pescatore 
about  the  underlying  problem 
hindering  adoption  of  SEM  prod¬ 
ucts  even  as  they  undergo  con¬ 
stant  improvement.“And  there  are 
way  too  many  suppliers  and  they 
all  sound  alike.” 

Pescatore  says  Gartner  counts 
ArcSight,  Intellitactics,  eSecurity 
SenSage  and  Network  Intelli- 


uct,  enVision,  expanding  it  for 
use  by  regulatory-policy  compli¬ 
ance  managers  who  want  specif¬ 
ic  reports  and  alerts  related  to 
financial  databases.  And  a  new 
player  in  SEM,  High  Tower  Soft¬ 
ware,  is  shipping  the  SEM  3210 
appliance,  purported  to  not  only 
centrally  collect  and  identity 
security  data  from  equipment, 
but  also  propose  strategies  for 
dealing  with  identified  prob¬ 
lems,  as  well. 

In  each  case,  the  SEM  vendors 
are  out  to  grab  attention  with 
features  others  don’t  yet  have 
(see  graphic):  Network  Intelli¬ 
gence  with  monitoring  reports 
and  alerts  tailored  to  compli¬ 
ance  officers  rather  than  just 
security  managers;  ArcSight  with 
its  operational  time  analysis  to 
profile  an  individual’s  network 
usage  based  on  the  user’s  role  in 
the  organization  and  nature  of 
the  application;  and  High  Tower, 
with  a  new  SEM  product  with 
remediation  advice. 

While  analysts  appreciate  the 


gence  among  the  more  promi¬ 
nent  pure-play  SEM  vendors, 
adding  that  Cisco,  Check  Point, 
Symantec  and  Internet  Security 
Systems  also  compete  in  the 
market. 

Primarily  because  of  its  ex¬ 
pense,  adoption  of  SEM  —  alter¬ 
nately  known  as  security  informa¬ 
tion  management  or  security 
information  and  event  manage¬ 
ment  —  has  only  slowly  found  an 
audience,  mainly  in  mid-  to  large¬ 
sized  companies. 

Larger  companies  have  typical¬ 
ly  had  the  greatest  need  for  a 
central  reporting  point  for  ana¬ 
lyzing  and  prioritizing  the  huge 
amount  of  syslog,  authentication 
and  attack  data  generated  each 
day  by  sensors,  firewalls,  anti¬ 
virus,  as  well  as  switches,  routers 
and  servers.  Today,  most  SEM 
gear  also  is  giving  them  real-time 
alerts  and  some  correlating 
events  to  better  identify  the 
nature  of  a  specific  threat. 

Companies  adopting  SEM  say 
it’s  invaluable  for  security  man¬ 


agers  who  need  to  stay  on  top  of 
what’s  transpiring  across  the 
network. 

Radian  Group,  a  mortgage  insur¬ 
ance  and  financial  services  com¬ 
pany  in  Philadelphia,  sees  a  com¬ 
bined  438  million  events  related 
to  security  generated  each  month 
by  its  firewalls,  IDS,  switches, 
routers  and  servers,  says  Jack 
Mackenzie,  the  company’s  senior 
information  security  engineer. 

Radian  deployed  the  Network 
Intelligence  enVision  appliance 
about  a  year  ago  at  points  on  its 
global  network  in  London  and 
New  York.  “Initially,  we  simply 
wanted  to  be  able  to  collect, 
report  and  correlate  data,” 
Mackenzie  says.  “But  now  we 
rely  on  it  for  alerts,  and  it’s 
become  the  central  log  server 
for  the  compan/ 

Radian  uses  enVision  to  central¬ 
ize  reporting,  analysis  and  alerts 
on  500  pieces  of  equipment. 
While  adapting  it  to  this  environ¬ 
ment  was  hard  at  first,  the  SEM 
product,  which  polls  these 
devices  to  gain  information,  has 
become  the  critical  point  to  gain 
information  related  to  security 
monitoring  in  the  organization, 
says  Mackenzie.  Radian  says  it 
will  upgrade  to  enVision  Version 
3  because  it  wants  real-time  com¬ 
pliance  alerting. 

Radian’s  Mackenzie  agrees  with 
Gartner’s  assertion  that  SEM  is 
expensive.“It  cost  us  $230,000  and 
then  we  put  another  $150,000 
into  this,”  he  says. 

In  the  struggle  to  differentiate 
their  products,  SEM  vendors  keep 
adding  new  reporting  and  analy¬ 
sis  capabilities,  or  vie  to  show 
they  can  process  more  events  per 
second  than  the  next  competitor. 

ArcSight,  which  counts  200  cus¬ 
tomers,  including  HealthSouth, 
Union  Bank  and  government 
agencies  such  as  the  Department 
of  Health  and  Human  Services, 
says  its  product  collects  30,000 
events  per  second  but  is  capable 
of  receiving  90,000  in  a  sudden 
burst. 

Network  Intelligence,  which 
counts  700  corporate  customers, 
says  its  SEM  equipment  can  han¬ 
dle  a  maximum  7,500  events  per 
second.  And  High  Tower,  which 
claims  14  undisclosed  customers, 
says  SEM  3210  will  process  up  to 
12,000  events  per  second.  ■ 


Conference  focuses 
on  open  source 
in  government 

BY  JENNIFER  MEARS 

IT  executives  from  a  dozen  states  will  meet  in  Oregon  this  week  to 
take  a  close  look  at  open  source  software  and  how  a  collaborative 
approach  to  application  development  could  help  them  cut  costs  and 
speed  software  development. 

Collaboration  is  becoming  increasingly  important  as  government 
organizations  now  comfortable  with  Linux  consider  relying  on  open 
source  for  business  applications.The  issue  will  be  among  several  areas 
covered  during  the  first  Government  Open  Source  Conference  in 
Portland  this  week. 

The  event,  sponsored  by  Oregon  State  University’s  Open  Source  Lab, 
also  will  include  discussion  about  the  benefits  and  challenges  of 

migrating  from  legacy  applica¬ 
tions  to  open  source.  In  addition, 
attendees  will  hear  firsthand  from 
government  officials  already 
bringing  in  open  source. 

“Most  of  these  agencies  are 
already  using  Linux.  Now  they’re 
trying  to  figure  out, ‘OK,  we’ve  got 
the  low-hanging  fruit.  What  about 
the  stuff  we’re  spending  a  lot  of 
money  on:  custom  solutions?’,” 
says  Scott  Kveton,  associate  direc¬ 
tor  of  the  Oregon  State  University 
Open  Source  Lab. 

That’s  where  an  open  source- 
based  collaboration  approach 
can  help,  analysts  say 
“Particularly  in  state  and  local 
governments,  you  have  a  situation 
where  there  are  a  lot  of  things  that 
they  do  that  are  very  similar  state 
to  state,”  says  Michael  Goulde,  a 
senior  analyst  at  Forrester 
Research.  “There  are  all  sorts  of 
things  that  require  software,  and 
rather  than  purchasing  individual  packages  or  developing  individual 
applications  it  just  makes  a  whole  lot  of  sense  for  governmental  entities 
to  collaborate,  to  create  communities,  and  jointly  develop  and  share 
software.” 

Universities  and  colleges  have  been  collaborating  on  software  devel¬ 
opment  within  organizations, such  as  the  Sakai  Project,  launched  by  the 
University  of  Michigan  and  Indiana  University  in  January  2004  to  devel¬ 
op  open  source  collaboration  and  education-focused  software. 

“The  idea  is  that  they  can  build  applications  and  defray  the  cost  and 
risk  across  several  different  organizations,”  Kveton  says.  “State  govern¬ 
ment  saw  this  and  said, ‘Jeez,  we  could  do  the  same  thing  but  with  state, 
local  and  federal  government.’” 

The  hope  is  that  the  Government  Open  Source  Conference  will  spur 
cooperation  between  government  IT  executives,  Kveton  says.  “We’ll  be 
breaking  out  into  agency  groups  and  hopefully  will  define  some  pro¬ 
jects,”  he  adds. 

About  115  IT  managers  from  12  states,  .including  California,  Idaho, 
Montana,  South  Carolina  and  Virginia  are  expected  to  attend. 

The  conference  was  initiated  in  May  as  a  way  to  bring  together  gov¬ 
ernment  leaders  in  Oregon, but  it  quickly  expanded, Kveton  says.Across 
the  country  government  agencies  are  beginning  to  look  at  ways  they 
can  work  together  to  develop  open  source  applications. 

Andy  Stein, director  of  IT  in  the  city  of  Newport  News.Va.,  for  example, 

See  Government,  page  80 


Voting  for  Linux 

Like  corporate  buyers, 
government  agencies  are 
looking  at  Linux  and  open 
source  applications  to  cut 
costs  and  are  helping  to 
drive  the  fast-growing 
market: 

•  The  overall  Linux  marketplace 
—  including  desktops,  servers 
and  packaged  software  running 
on  Linux  —  is  expected  to  grow 
from  $14  billion  today  to  more . 
than  $35  billion  in  2008, 

•  The  market  for  software  running 
on  Linux  is  expected  to  more  than 
triple  from  less  than  $4  billion 
today  to  $14  billion  by  2008. 

SOURCE:  IDC 
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Microsoft  bellies  up  with  security  software 


Malware  plugs 

For  the  past  few  years,  Microsoft  has  been  acquiring  technology  to  make  a  push  in  the  security 
software  market. 


Product/service  Where  it  eame  from  What  it  is  Availability 


Ciient  Protection 

Combination  of  GeCAD  anti-virus  (acquired 
July  2003)  and  Giant  anti-spyware 
(acquired  Dec.  2004) 

Anti-virus,  anti-spyware  for  desktops,  laptops 
and  Windows  file  servers 

2006 

Antigen 

Part  of  Feb.  2005  acquisition  of  Sybari 

First  release  will  focus  on  Exchange 

First  half  2006 

OneCare 

Bundle  of  Microsoft  and  technology  from 
acquisition 

Consumer-subscription  PC  health  service 

In  beta  testing 

Frontbridge 

Acquired  July  2005 

Hosted  service  for  securing  and  archiving  e-mail 

Now 

BY  JOHN  FONTANA 

Microsoft  last  week  unveiled  its 
long-anticipated  anti-virus,  anti¬ 
spyware  software  designed  for 
corporate  networks.This  marks  its 
first  direct  and  significant  shot  at 
partners  such  as  McAfee  and 
Symantec  that  develop  similar 
software. 

Microsoft  Client  Protection, 
which  is  set  to  ship  next  year,  is 
designed  to  protect  desktops,  lap¬ 
tops  and  basic  Windows  file 
servers  from  viruses,  spyware  and 
other  malware,  including  root 
kits.  The  software  is  expected  to 
go  into  beta  by  year-end. 

Experts  say  depending  on  pric¬ 
ing,  which  was  not  announced, 
the  software  could  appeal  to 
pure  Microsoft  shops  but  not  larg¬ 
er  users  with  heterogeneous 
environments. 

Microsoft  has  promised  this  se¬ 
curity  software  for  two  years,  and 
last  week’s  announcement  shows 


how  competitive  the  company  is 
getting  in  the  security  market, 
analysts  say. 

“It’s  nice  to  see  this  giant  rock 
thrown  into  the  anti-viral  pond  to 
make  those  guys  innovate  and 
move  faster  than  they  have  been,” 
says  John  Pescatore,  an  analyst 
with  Gartner.  “But  right  now, 
Symantec  is  the  only  one  showing 
that.” 

In  August,  Symantec  purchased 
Sygate,  which  provides  technolo¬ 
gy  to  ensure  devices  comply  with 
security  policies  before  they 
access  the  network.  Microsoft  is 
adding  similar  technology  to 
Windows  called  Network  Access 
Protection,  but  it  is  not  expected 
to  ship  until  2007. 

Last  month,  Symantec  pur¬ 
chased  Whole  Security  which  pro¬ 
vides  anti-phishing  technology 
Microsoft  plans  to  add  anti-phish¬ 
ing  technology  to  Internet  Ex¬ 
plorer  7,  also  due  in  2007.  Micro¬ 


soft  has  added  anti-phishing  fea¬ 
tures  to  its  MSN  online  service. 

Microsoft’s  Client  Protection  is  a 
combination  of  software  it 
acquired  from  anti-virus  vendor 
GeCAD  in  June  2003  and  from  the 
purchase  last  December  of  Giant 
Company  Software,  which  devel¬ 
ops  anti-spyware  software. 


Client  Protection  comprises 
agents  that  run  on  each  client  and 
a  centralized  server  management 
console  tied  into  Active  Directory 
and  it’s  Group  Policy  technology 
Microsoft  said  last  week  it  will 
build  Antigen  anti-virus  and  anti¬ 
spam  security  software  for  mes¬ 
saging  and  collaboration  servers. 


First  up  is  Microsoft  Antigen  for 
Exchange,  which  is  slated  to  go 
into  beta  in  the  first  half  of  2006. 

Client  Protection  supports  Win¬ 
dows  XP  Service  Pack  2  and  Win 
2000  Service  Pack  4  on  the  client 
side.  On  the  server,  it  supports  Win 
2003  Service  Pack  1  and  above 
and  Win  2000  Service  Pack  4.  ■ 


I've  been  printing,  copying,  scanning,  putting  in  tabs 
and  hole  punching  booklets  all  morning. 


That  new  Ricoh  high  volume  system's 
workhorse,  huh  Jerry? 
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NetConf 

continued  from  page  1 

A  widely  adopted  standard  pro¬ 
gramming  interface,  such  as  that 
defined  by  NetConf,  would  make 
it  simpler  for  vendors  that  special¬ 
ize  in  configuration  management 
to  create  broadly  applicable  tools, 
says  Sherrie  Woodring,  CEO  of 
configuration  management  ven¬ 
dor  Emprisa.  “A  lot  of  our  R&D 
costs  go  toward  learning  the  mul¬ 
tiple  techniques  to  get  informa¬ 
tion  out  of  a  device  and  incorpo¬ 
rating  that  into  a  product.” 

Today,  management  software 
vendors  painstakingly  learn  the 
format  and  protocols  that  equip¬ 
ment  makers  use  to  store  and  ac¬ 
cess  configuration  data  on  each 
piece  of  gear. They  then  write  soft¬ 
ware  that  can  gather  and  manipu¬ 
late  this  data  via  a  consistent  user 
interface. 

When  a  vendor  updates  soft¬ 
ware  on,  say  a  router,  that  might 
include  a  change  to  the  format  to 
which  configuration  manage¬ 
ment  software  vendors  have  to 
adapt  —  and  that  takes  time  that 
can  delay  network  upgrades,  says 
Paul  Froutan,  vice  president  of 
product  engineering  at  Rack- 
Space  in  San  Antonio.  The  com¬ 
pany  uses  Voyence’s  software. 

“Everything  today  is  being  done 
in  a  custom  manner?  Froutan  says. 
“Generally  when  you  have  a  new 
device  or  there  is  a  new  feature 
added, you  want  to  get  at  it  imme¬ 
diately  If  it’s  not  updated  quickly 


The  art  of  configuration 


Shortcomings  in  current  ways  of  configuring  network  devices 
has  the  IETF  working  to  standardize  a  network  configuration 
protocol  known  as  NetConf. 


Challenge 

Strategy 

Configuration  errors  can  cause  network 
security  holes  and  performance 
problems. 

Reducing  the  need  for  manual 
configuration  via  standard 
programmatic  tools  can  reduce  errors. 

Automated  network  management 
requires  highly  skilled  engineers  and 
cooperation  with  vendors  to  tap 
proprietary  tools. 

NetConf  defines  a  standard  interface 
for  applications  that  will  make  it  possible 
for  fewer,  less  trained  staff  to  create 
configuration  tools. 

Localized  password  authentication 
available  via  SNMP  doesn't  scale  for 
large  numbers  of  devices. 

NetConf  interfaces  with  authentication 
servers  such  as  RADIUS  to  support 
large  networks, 

SNMP  formats  of  configuration  data 
are  not  concise, 

NetConf  creates  an  interface  that  gleans 
the  information  succinctly. 

Current  methods  of  gathering 
configuration  data  must  deal  with  many 
vendor-specific  command-line 
interfaces,  increasing  complexity. 

NetConf  supports  XML  which  already 
has  features  to  manipulate  text,  as  well 
as  encoded  data, 

enough,  that’s  when  you  stop  sup¬ 
porting  that  product  or  standard.” 

Being  able  to  gather  configura¬ 
tion  data  quickly  has  greater  im¬ 
plications  the  larger  the  network. 
Jim  Keck,  vice  president  of  enter¬ 
prise  systems  services  in  Citi- 
group’s  technology  infrastructure 
group  in  New  York,  says  if  NetConf 
takes  off  he  imagines  it  will  sim¬ 
plify  configuration  of  the  more 
than  30,000  switches  and  routers 
in  Citigroup’s  network. 

“Normalizing  this  process  so  1 


can  simply  ask, ‘What’s  the  [oper¬ 
ating  system]?’  would  have  a 
major  impact,”  he  says,  referring  to 
the  various  operating  system  itera¬ 
tions  running  on  his  Cisco  net¬ 
work  gear  and  other  hardware. 

By  creating  a  more  widely  un¬ 
derstood  platform,  businesses 
would  need  fewer  device-specific 
experts.  “Instead  of  having  to 
know  multiple  protocols  and 
tools, anyone  could  take  this  infor¬ 
mation  and  apply  it  to  trouble¬ 
shooting  or  root-cause  analysis, 


Partnership 

continued  from  page  8 

centric  services  model. 

Earlier  this  year,  IBM  began  to  test  a  set  of  produc¬ 
tivity  tools  built  using  OpenOffice  technology  that 
run  as  network-centric  services  accessed  by  its  Work¬ 
place  client.  A  public  beta  is  planned  later  this  year. 

“Our  approach  is  one  of  componentizing  Open- 
Office  technologies  and  making  them  available  ser¬ 
vices  in  the  context  of  such  things  as  e-mail,  docu¬ 
ment  creation  and  collaboration,”  says  an  IBM  offi¬ 
cial  who  requested  anonymity  because  of  the  com¬ 
pany’s  partnership  arrangement  with  Google.  “And 
then  to  provide  services  around  them  such  as  docu¬ 
ment  management,  records  management,  team 
workspaces,  e-mail  services  with  the  focus  of  build¬ 
ing  the  Office  suite  for  the  networked  world.  Fat  desk¬ 
top  suites  are  looking  very  tired  today’ 

Microsoft  knows  that  just  by  looking  at  its  flagging 
Office  revenue  numbers  over  the  past  few  years. 
Revenue  was  up  just  3%  for  fiscal  year  2005,  which 
ended  June  31,  over  fiscal  year  2004  for  the  Infor¬ 
mation  Worker  division  that  includes  Office. 

At  its  recent  Professional  Developers  Conference 
(PDC),  Microsoft  set  out  to  address  that  fact  by 


demonstrating  innovations  in  Office  12,  due  to  ship 
next  year.  The  upgrade  takes  productivity  services  to 
the  network,  including  something  called  Excel 
Services,  the  ability  to  view  and  interact  with  spread¬ 
sheets  in  a  browser. 

“The  assumption  is  that  somebody  else  other  than 
Microsoft  is  going  to  accelerate  the  Web  2.0  vision 
where  you  can  do  the  next  generation  of  produc¬ 
tivity  with  browser-based  apps  that  used  to  require 
clunky  fat  clients,”  says  Peter  O’Kelly  an  analyst  with 
Burton  Group.“My  rebuttal  is,  did  you  go  to  the  PDC? 
Did  you  see  Excel  Services  where  you  can  do  no¬ 
client-install-required  and  all  you  need  is  an  AJAX- 
capable  browser  client?’" 

“Microsoft  isn’t  doing  this  with  smoke  and  mir¬ 
rors.  They  have  a  server  that  does  Excel  rendering, 
including  highly  interactive  tasks  like  pivot  tables; 
and  they  have  a  similar  server  for  InfoPath  forms,” 
O’Kelly  says.  “They  are  taking  productivity  applica¬ 
tions  to  the  Web.” 

He  says  while  Microsoft  still  must  deliver,  he  grows 
tired  of  the  hype  around  Google  when  it  disregards 
existing  projects  in  the  industry 

“Google  could  announce  that  it  is  going  into  tooth¬ 
paste  manufacturing  and  it  would  get  front-page  cov¬ 
erage  because  they  are  that  hot,”  he  says.B 


speeding  mean  time  to  repair,” 
Nudler  says. 

Most  vendors  supply  their  own 
configuration  tools,  but  if  they  fit 
to  a  standard  it  would  be  easier  to 
create  individual  tools  that  con¬ 
trol  more  devices, says  Eliot  Lear,  a 
consulting  engineer  at  Cisco  who 
co-wrote  one  of  the  NetConf  pro- 
posals.“It’s  likely  over  time  you’ll 
see  more  and  more  accessibility 
to  more  and  more  devices  from 
the  same  tool,”  he  says. 

That  appeals  to  Citigroup’s  Keck. 
“Fewer  tools  helps  our  support 
team  stay  leaner  and  more  re¬ 
sponsive,”  he  says. 

Some  vendors  already  are  using 
configuration  tools  that  follow  the 
NetConf  model  of  including  XML 
support.  Cisco,  for  example,  has  its 
Enhanced  Device  Interface  (ED-1) 
and  Juniper  has  Junos  Script  to 
support  programmatic  interfaces 
to  configuration.  Both  vendors  are 
active  in  writing  NetConf. 

Even  if  the  IETF  endorses  Net¬ 
Conf  quickly  that  doesn’t  mean  it 
will  appear  right  away  in  lots  of 
equipment  or  configuration  tools. 

Juniper  will  likely  standardize 
on  NetConf  when  it  wins  IETF 
approval,  says  Craig  Bardenheuer, 
a  director  of  product  manage¬ 
ment.  “A  standard  makes  it  easier 
for  our  customers  to  write  tools  to 
deploy  our  gear  quickly  and  effi¬ 
ciently  he  says. 

Similarly  Cisco  will  likely  adopt 
it,  but  cautiously  Lear  says.  Cisco 
supports  CL1  and  ED-I,  and  sup¬ 
porting  NetConf  as  well  might  cre¬ 
ate  compatibility  problems.The 
only  thing  worse  than  two  solu¬ 
tions  to  solve  the  same  problem  is 
three  solutions  to  solve  the  same 
problem,”  he  says. 

Even  after  equipment  vendors 
start  using  NetConf,  they  will  still 
add  their  own  extras  as  a  way  to 
stand  out  from  the  competition, 
so  totally  unified  configuration 
platforms  may  be  beyond  reach, 
Lear  says. 

As  for  the  makers  of  configura¬ 
tion  management  software,  while 
they  find  NetConf  attractive  their 
use  of  it  will  depend  on  cus¬ 
tomers  buying  NetConf-capable 
equipment,  says  David  Schrodel, 
CTO  of  configuration  manage¬ 
ment  vendor  Voyence.  “If  we 
could  get  80%  to  90%  of  the  func¬ 
tionality  out  of  NetConf  that  we 
get  out  of  investing  our  R&D  dol¬ 
lars,  it  would  be  a  huge  step  for¬ 
ward.  But  we’d  have  to  see  [Net- 
Conf-enabled  gear]  in  customer 
networks  before  we  consider 
adoption,”  he  says.B 
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IPv6  by  2008 

Bechtel  will  add  IPv6  to  its  network  in  a  dual-stack  configuration 
to  minimize  early  impact 


First  half 

2006 

Finish 

Front-end  engineering  (design,  lab,  security,  quality  assurance 
environment,  procurement  and  developer  guidelines). 

Second 
quarter  2006 

Start 

Limited  production  dual-stack  pilots  using  tunneling  for  WAN 
transport. 

Second 
quarter  2006 

Start 

Dual-stack  WAN  transport. 

Fourth 

quarter  2006 

Start 

IPv6  turned  on  by  default. 

Second  half 
2006 

Start 

Global  expansion  of  deployment  based  on  product  maturity. 

First  quarter 
2007 

Finish 

Mqjor  high-use/critical  applications  go  through  quality 
assurance  to  certify  dual-stack  compliance. 

Second  half 
2008 

Finish 

Full  enterprise  dual-stack  deployment  in  network  and 
applications. 

Second  half 
2008 

Start 

Remove  legacy  IPv4  networks. 

Bechtel 

continued  from  page  1 

Wettling  is  not  only  advertising 
Bechtel’s  ongoing  upgrade,  he’s 
had  baseball  hats  made  up  with 
“IPv6  Ready”  logos  to  help  pro¬ 
mote  the  project  within  the  com¬ 
pany  While  Wettling  says  getting 
Bechtel’s  upper  management  to 
approve  the  IPv6  migration  has 
been  more  about  education  than 
arm  twisting,  few  companies  will 
talk  of  concrete  plans  regarding 
the  protocol.  For  example,  aero¬ 
space  giant  Boeing,  which  like 
Bechtel  is  a  member  of  the  North 
American  IPv6  Business  Council 
—  conceived  to  foster  the 
upgraded  protocol’s  adoption 
among  U.S.  businesses  —  de¬ 
clined  to  discuss  its  IPv6  plans. 

IPv6  is  far  from  a  top  priority 
among  network  executives. 
Despite  its  purported  benefits  — 
expanded  address  space,  and  im¬ 
proved  security  and  information 
routing  —  the  cost  of  upgrading 
hardware,  software  and  applica¬ 
tions,  not  to  mention  training,  has 


kept  the  transition  on  the  back 
burner  at  most  organizations. 
Even  IT  executives  inside  the  fed¬ 
eral  government,  which  has  im¬ 
posed  a  2008  deadline  for  mov¬ 
ing  to  IPv6,  bemoan  having  to 
shuffle  technology  priorities  to 
afford  the  transition. 

“Right  now  our  standard  advice 
for  typical  enterprise  clients  is 
‘Don’t  do  it,’”  says  David 
Passmore,  research  director  with 


Burton  Group,  about  IPv6. 
Despite  Bechtel’s  good  business 
case  for  going  to  IPv6,  Burton 
Group  maintains  there  are  no 
technical  advantages  to  upgrad¬ 
ing  at  this  point. 

Crazy  is  as  crazy  does 

“The  only  people  we’ve  run 
across  who  might  have  real  tech¬ 
nical  justification  for  going  to  v6 
are  parts  of  [the  Department  of 
Defense]  for  automated  battle¬ 
fields.  . .  .To  anybody  else  I’d  say 
‘You’re  crazy”’  he  says. 

At  Bechtel,  however,  the  busi¬ 
ness  case  for  moving  to  IPv6  was 
strong  enough  to  sell  executives 
on  the  idea. 

The  engineering,  construction 
and  project  management  com¬ 
pany  lays  claim  to  some  impres¬ 
sive  and  varied  projects,  such  as 
building  the  Hoover  Dam,  the 
Hong  Kong  International  Airport 
and  the  original  Sprint  PCS  net¬ 
work. 

Three  business  units  within 
Bechtel  serve  customers  that 
view  IPv6  as  strategic,  Wettling 


says.  A  unit  that  focuses  on  the 
U.S.  government  with  its  2008 
deadline  —  and  with  the 
Defense  Department  moving 
even  more  aggressively  to  IPv6  — 
is  a  key  one.  A  division  devoted  to 
wireless  carriers  that  look  to 
Bechtel  to  build  out  their  net¬ 
works  is  another.  Especially 
because  IPv6  is  required  by  the 
IP  Multimedia  Subsystem,  a  stan¬ 
dard  designed  to  deliver  voice, 


data  and  video  to  mobile 
devices,  toward  which  many 
wireless  service  providers  are 
moving.  The  third  unit  is  in  con¬ 
trol  systems  —  sensors  that 
detect  light,  temperature  or 
humidity,  for  example,  which  are 
involved  in  keeping  a  building 
running.  These  are  moving  from 
proprietary  networks  to  IP  and 
could  benefit  from  IPv6’s  in¬ 
creased  address  space,  Wettling 
says. 

What’s  more,  many  of  Bechtel’s 
customers  are  in  areas  such  as 
China  that  are  more  aggressively 
adopting  IPv6  than  U.S.  business¬ 
es,  he  says. 

These  drivers  led  to  the  deci¬ 
sion  that  Bechtel  needs  to  move 
forward  with  IPv6,  with  a  target 
date  of  2008  for  completing  the 
transition  (see  graphic). Although 
Wettling  has  been  aware  of  the 
protocol  since  he  learned  about 
it  at  an  Interop  conference  ses¬ 
sion  in  1997,  this  year  he  man¬ 
aged  to  get  the  company’s  senior 
executives  signed  on,  and  a  plan 
is  in  place. 

Getting  to  the  point  of  corpo¬ 
rate  acceptance  was  really  about 
education,  Wettling  says.  For  the 
last  few  years,  he’s  been  in  con¬ 
versations  with  CTOs  and  CIOs  of 
the  company’s  business  units 
about  the  importance  of  transi¬ 
tioning  to  IPv6  and  making  it  a 
technical  competence  of  the 
company.  “Providing  technology 
trend  information  relevant  to  our 
work  allowed  the  business  lead¬ 
ers  to  make  informed  decisions 
about,  the  importance  of  IPv6  to 
their  customers,”Wettling  says. 

Informing  business  leaders 
about  technology  is  now  an  offi¬ 
cial  part  of  his  responsibilities; 
last  month  he  was  named  a 
Bechtel  Fellow,  one  of  only  18  out 
of  40,000  employees,  focusing  ini¬ 
tially  on  networking  and  security. 

In  addition  to  making  the  busi¬ 
ness  case  that  some  of  Bechtel’s 
key  customers,  partners  and 
competitors  are  transitioning  to 
IPv6, Wettling  needed  to  show  the 
company  how  this  upgrade 
would  be  internally  beneficial. 

Specifically  for  Bechtel,  IPv6’s 
promised  end-to-end  security 
and  heightened  mobility  features 
will  play  a  large  part  in  keeping 
the  company’s  many  offices  and 
field  workers  connected,  says 
Alan  Materna,  Bechtel’s  IPv6  pro¬ 
ject  manager. 

Wettling  spread  the  IPv6  mes¬ 
sage  internally  during  “tech  talks” 
with  members  of  the  company’s 
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IT  department.  Wettling  wasn’t 
faced  with  much  opposition,  he 
says,  but  issues  have  arisen 
regarding  prioritizing  resources. 
“The  resistance  has  to  do  with 
where  to  fit  [the  upgrade]  into 
the  list  of  priorities,”  he  says. 
“There’s  no  dispute  within 
Bechtel  that  we  have  to  do  this,  it 
was  just  a  matter  of  when.” 

A  matter  of  course 

Working  in  Wettling’s  favor  is 
that  much  of  the  transition  to  IPv6 
will  be  done  as  a  matter  of 
course.  “There  are  so  many 
aspects  to  this  transition  that  are 
just  a  part  of  what  we  do  with  the 
regular  network;  router  upgrades,” 
he  says.  So  as  the  company  does 
routine  upgrades  of  its  routers, 
operating  systems,  applications, 
PCs  and  servers,  IPv6  will  be  auto¬ 
matically  a  part  of  that  as  vendors 
include  the  new  protocol  in  their 
offerings  —  Wettling  says  many 
including  Cisco  and  Microsoft, 
already  do  so. 

“For  each  vendor  we’re  taking 
a  look  at  their  products  to  see 
what  [aspects  of  IPv6]  they  sup¬ 
port  now  and  what  they’ll  sup¬ 
port  in  the  next  release.  It’s  just 
part  of  planning.”  Because  much 
of  the  transition  to  IPv6  will 
come  with  regular  product  up¬ 
grades,  the  dedicated  costs  for 
the  project  consist  of  an  undis¬ 
closed  amount  for  project  man¬ 
agement  and  upfront  implemen¬ 
tation  planning  and  architecture, 
Wettling  says. 

Enterprise  applications  are  a  bit 


trickier,  however.  “It’s  still  a  chal¬ 
lenge  for  us  to  design  and  imple¬ 
ment  or  acquire  applications  that 
are  relatively  insensitive  to  under¬ 
lying  infrastructure  changes,” 
Wettling  says.  He’s  not  too  con¬ 
cerned,  however.  “We’re  not  tak¬ 
ing  anything  away,  we’re  just 
adding  v6,”he  says. 

Ensuring  Bechtel’s  key  applica¬ 
tions  run  in  this  new  environ¬ 
ment  is  up  to  Bechtel’s  software 
quality  assurance  department, 
which  will  test  all  applications 
modified  to  work  with  IPv6,  says 
manager  Steve  Bettinger.  “We 
have  to  physically  go  in  and  alter 
applications  to  go  to  v6,”  he  says. 
“Most  of  our  testing  will  be  to  ver¬ 
ify  [they  run]  on  the  migrated 
infrastructure.” 

Currently  there  are  about  1,600 
applications  running  at  Bechtel; 
the  company  plans  to  modify 
and  test  what  it  considers  its  50 
most  strategic  programs  by  the 
end  of  2006.  “Hopefully  when  we 
get  to  that  point  we’ll  be  able  to 
really  understand  what  it  takes  to 
get  [the  rest  of  the]  applications 
tweaked”  for  IPv6,  he  says. 

Although  moving  to  IPv6  will 
take  time  and  coordinated  effort, 
Wettling  says  in  the  grand 
scheme  of  things  it’s  not  a  major 
ordeal.  “We’ve  gone  through  net¬ 
work  protocol  conversions  over 
and  over  again  —  this  is  just 
another  one,”  he  says.  “Organ¬ 
izations  like  ours  that  have  solid 
change  management  in  place 
are  going  to  have  a  better  transi¬ 
tion  to  v6.”B 


Fred  Wettling,  manager  of  IT  strategy  and  standards  at  Bechtel,  says  sell¬ 
ing  upper  management  on  the  idea  of  IPv6  was  a  matter  of  education. 
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Cisco  Press 

continued  from  page  1 

Sales  of  Routing  TCP/IP  pale  in 
comparison  to  Harry  Potter  and 
the  Half-Blood  Prince,  which  sold 
6.4  million  copies  in  its  first  two 
weeks  on  bookshelves  this  sum¬ 
mer.  But  in  the  niche  of  network 
books,  the  release  of  a  new  edi¬ 
tion  of  Routing  TCP/IP  is  just  as 
significant. 

The  book  has  sold  more  than 
55,000  copies  —  43,000  in  the 
US.and  12,000  overseas  —  since 
its  release  in  1998.  It  is  a  must- 
read  for  network  engineers  purs¬ 
ing  Cisco  certifications.  Many 
keep  a  dog-eared  copy  of  the 
1 ,000-page  tome  in  their  offices 
for  troubleshooting  IP  routing 
problems. 

The  only  Cisco  Press  book  that 


has  sold  more  copies  is  a  self- 
study  test  preparation  text  for  the 
Cisco  Certified  Network 
Associate  (CCNA)  exam. 

This  is  far  and  away  Cisco 
Press’  best-selling  first  edition, 
non-certification  book,”  says 
Kourtnaye  Sturgeon,  director  of 
marketing  for  Cisco  Press. 
Sturgeon  says  the  nearest  compa¬ 
rable  title  sold  24,000  copies. 

“For  a  computer  bookselling 
45,000  volumes  domestically  is 
quite  respectable,”  says  Jim 
Milliot,  director  of  business  and 
news  at  Publishers  Weekly,  which 
tracks  book  sales.  Milliot  adds 
that  a  book  such  as  Routing 
TCP/IP  can  be  “very  profitable” 
given  its  $80  price. 

For  Cisco  Press,  publishing  a 
second  edition  of  Routing 
TCP/IP,  Volume  1  is  a  big  deal, 
and  it  is  more  than  two  years  in 


deas? 


■  Got  a  suggestion  for  a  Wider  Net 
story?  An  offbeat  network  industry- 
related  topic?  A  fascinating  person¬ 
ality  we  should  profile?  Contact 
Bob  Brown  with  your  ideas  at 
bbrewn@nww.coni. 


the  making. 

Cisco  Press  is  an  alliance  be¬ 
tween  Cisco  and  Pearson  Tech¬ 
nology  Group,  which  also  pub¬ 
lishes  IT  books  under  the  im¬ 
prints  of  Addison-Wesley  Pro¬ 
fessional,  Peachpit,  Prentice  Hall 
PTR,  Que,  Sams  and  BradyGames. 
Cisco  Press  is  the  official  publish¬ 
er  of  training  and  self-study  mate¬ 
rials  for  Cisco  certifications,  but  it 
also  offers  general-purpose 
books  about  network  technology 
and  business  strategies. 

Cisco  Press  publishes  50  to  55 
books  per  year,  and  it  has  a  back- 
list  of  225  titles  that  it  offers.  Cisco 
and  Cisco  Press  agree  on  the 
titles  that  will  be  published,  and 
Cisco  engineers  review  the  books 
before  they  are  issued.  Cisco 
gives  Cisco  Press  editors  and 
authors  early  access  to  in¬ 


formation  about  new  products 
and  changes  to  certification 
exams  so  the  alliances  books  are 
timely  and  accurate. 

Cisco  and  Pearson  Technology 
Group  share  in  Cisco  Press’  rev¬ 
enue.  These  figures  are  not  pub¬ 
licly  available. 

Milliot  says  Cisco  Press  is  a 
small  player  in  the  computer 
publishing  industry  where  most 
of  its  competitors  focus  on  con¬ 
sumer-oriented  books. 

“There  certainly  is  room  for 
niches,  especially  ones  that  trade 
on  a  brand  name,”  Milliot  says. 
“Cisco  is  a  well-established  brand 
name.” 

Books  by  Cisco  Press,  especially 
Routing  TCP/IP  have  a  loyal  fol¬ 
lowing  among  network  engi¬ 
neers. 

“That  book  holds  a  threefold 
significance  to  Cisco  in  terms  of 
helping  out  our  customers  be¬ 
cause  of  its  accuracy  and  depth,” 
says  Anthony  Wolfenden,  director 
of  operations  in  engineering  for 
Cisco.“It’s  used  as  a  reference 
book  by  college  kids  going 
through  our  Networking  Acad¬ 
emy  It’s  a  complete  desk  refer¬ 
ence  for  anyone  who  works  with 
Cisco  routers.  And  it’s  a  reference 
for  anyone  who  wants  to  achieve 
or  maintain  a  [Cisco  Certified 


Internetworking  Expert] .  It  really 
broadly  strikes  at  one  of  the  core 
elements  of  Cisco:  What  is  IP  rout¬ 
ing  and  how  to  do  it.” 

On  Amazon. corn’s  Web  site, 
reviewers  called  Routing  TCP/IP 
“masterful,”  “indispensable”  and  “a 
great  routing  reference  book.” 

One  five-star  review  called  the 
book  “an  essential  desk  reference 
for  anyone  pursuing  a  career  as  a 
senior-level  routing  engineer? 

Thanks  to  the  enthusiastic  re¬ 
sponse,  Doyle  is  a  minor  celebrity 
and  popular  presence  on  the 
conference  speaking  circuit. 

“I  travel  all  over  the  world  doing 
seminars  and  giving  speeches, 
and  I  am  completely  amazed  that 
in  so  many  parts  of  the  world 
people  will  come  up  to  me  with 
copies  of  the  book  and  want  me 
to  autograph  it,"  Doyle  says. 

It  took  a  year  for  Doyle  to  write 
Routing  TCP/IRwhich  was  his 
first  book.The  book  proved  so 
popular  that  he  came  out  with  a 
second  volume  in  2001. 

“It  was  good  timing  and  luck  on 
my  part  to  take  that  fundamental 
topic  of  core  routing  and  create 
a  book  around  it,”  says  Doyle, 
who  at  the  time  worked  as  a 
senior  network  systems  consul¬ 
tant  with  International  Network 
Services. 

“I  had  no  idea  it  would  be  such 
a  best  seller?  he  says.“I  was  told 
that  the  shelf  life  of  a  technical 
book  is  two  or  three  years.  Here  it 
is  seven  years  later,  and  it’s  still 
going  strong.  I  still  get  a  very  nice 
royalty  check  every  month.” 

Despite  the  popularity  of 
Routing  TCP/IP  producing  a  sec¬ 
ond  edition  was  not  a  sure  thing 
for  Cisco  Press.That’s  because 
Doyle  now  works  for  Cisco’s 
archrival  Juniper  Networks, 
where  he  serves  as  senior  net¬ 
work  architect. 

“Cisco  Press  wanted  me  to  do 
the  book  all  along,  but  Cisco  had 
a  lot  of  concerns.They  wanted  to 
make  sure  I  didn’t  mention 
Juniper  anywhere  in  the  book,” 
Doyle  says. 

When  Doyle  wrote  the  first  edi¬ 
tion  of  Routing  TCP/IP  he  says 
Cisco  provided  lots  of  technical 
details  that  hadn’t  been  pub¬ 
lished  before. 

“With  the  first  book,  a  lot  of 
doors  were  opened  to  me  in 
Cisco  engineering.  Cisco  shared  a 
lot  of  information  because  at  the 
time  I  worked  for  a  systems  inte¬ 
grator?  he  says.“When  I  joined 
Juniper,  a  lot  of  those  doors  were 
closed.” 


Cisco  Press 
at  a  glance 

Types  of  books 


Certification  and  self  study  30% 


TOTAL:  225  ACTIVETITLES 

Who  reads  them? 

•  35  to  44  years  old. 

•  96%  are  male. 

•  Owns  six  to  10  Cisco  Press  books. 


Who  sells  them? 


Corporate/Government /VA R  20% 

Doyle  brought  on  a  co-author 
—  Jennifer  DeHaven  Carroll  — 
for  the  second  edition  of  the 
book  to  alleviate  Cisco’s  con¬ 
cerns  about  sharing  information 
with  a  Juniper  employee. 

“She  is  an  independent  consul¬ 
tant,  but  she  has  good  relation¬ 
ships  with  Cisco,”  Doyle  says.“I 
wrote  all  of  the  technical  pieces 
and  coordinated  the  overall  pro¬ 
ject,  and  Jennie  did  the  rewrites 
on  the  IOS-specific  pieces  of  the 
chapters.” 

The  new  edition  of  Routing 
TCP/IP  emphasizes  IPv6,  a  long- 
anticipated  upgrade  to  the 
Internet’s  main  protocol,  IPv4. 
References  to  older  technologies 
such  as  FDDI  and  token  ring 
were  eliminated.  Protocol 
descriptions  were  updated  to 
include  the  latest  capabilities  and 
configuration  options. 

“I  started  with  a  new  chapter 
that  introduces  IPv6,”  Doyle  says. 
“For  each  of  the  protocols  I 
describe  in  the  chapters,  I  show 
configurations  for  IPv4  and  IPv6. . 

. .  I’m  a  big  IPv6  advocate.  In  this 
book,  it’s  treated  as  a  standard 
part  of  the  Internet  Protocol.” 

Doyle  spent  six  months  writing 
the  new  edition  of  his  latest 


^People  will  come  up  to 
me  with  copies  of  the 
book  and  want  me  to 
autograph  it.W 

Jeff  Doyle,  author  of  Routing  TCP/IP 


book,  and  he’s  hoping  it  will  be 
another  bestseller.  He’s  already 
got  the  royalty  payments  ear¬ 
marked  for  spending. 

“I  have  four  kids:  one  in  col¬ 
lege,  and  one  that’s  going  to  be 
in  college  next  fall?  says  the  52- 
year-old  author. “The  royalty 
checks  will  probably  all  go  to 
college  tuition.” 

Cisco  Press  has  begun  its  mar¬ 
keting  push  for  the  second  edi¬ 
tion.  Cisco  Press  announced  the 
book’s  release  at  Interop  in  May 
in  Las  Vegas  and  displayed  it  at 
the  Cisco  User’s  Conference  in 
June  in  Las  Vegas.  Web  sites  such 
as  Amazon.com  and 
Powells.com  have  been  taking 
pre-orders  since  July 

Despite  its  importance  to  Cisco 
Press,  Routing  TCP/IP  is  a  minor 
blip  to  the  high-volume  publish¬ 
ing  industry 

With  an  initial  print  run  of  6,000 
copies,  the  second  edition  hasn’t 
garnered  the  attention  of  the  top 
brass  at  RR  Donnelly  &  Son’s 
printing  plant  in  Crawfordsville, 
Ind.,  where  Cisco  Press  books  are 
printed  and  bound. 

“We  published  2.5  million 
copies  of  Harry  Hotter  and  the 
Half-Blood  Prince  this  summer? 
says  John  Prasser,  senior  cus¬ 
tomer  service  representative  at 
RR  Donnelly  &  Sons,  who  says 
2005  will  be  the  plant’s  best  year 
ever.  Prasser  wasn’t  familiar  with 
Routing  TCP/IP 

“Harry  Pbtter  and  The  Purpose 
Driven  Life  are  our  biggest  jobs? 
Prasser  says.  ■ 


nww.com 

Chapter  1 

Find  out  why  Houting  TCP/IP  is  so  popu¬ 
lar  by  heading  online  to  read  the  first 
chapter  of  book. 
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NETWORK  MANAGEMENT  POWERFUL 
ENOUGH  TO  DO  EVERYTHING 

IS  TOO  COMPLEX  TO  DO  ANYTHING. 


Don’t  get  stuck  with  more  than  you’ll  ever  use  and  less  than  you  need. 


Ipswitch  WhatsUp"  Professional  is  designed  specifically  for  small-  and 

.  ; 

medium-sized  businesses.  So  you  get  essential  network  management 


without  high  administrative  costs  and  effort.  Featuring  comprehensive 
alerts,  automatic  device  mapping,  detailed  trend  reports  and  secure 
remote  access  -  it’s  a  smarter  solution,  instead  of  a  bigger  one. 


Ipswitch  Whatsllp  Professional. 
It  just  works. 
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IPSWITCH 

#WhatsUp 

Professional! 


Visit  www.ipswitch.com  to 
download  a  30-day  free  trial. 


WhatsUp  is  a  registered  trademark  of  ipswitch,  Inc.  All  other  trademarks  are  the  property  of  their  respective  ov/ners. 
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3Com  adds  anti-phishing  to  IPS  box 


Netting  phish  attacks 

New  anti-phishing  capabilities  in  TippingPoint’s  IPS  gear  let 
the  service  stop  attacks  either  at  end-user  PCs  or  at  hijacked 
Websites.  Phishing  site 


Legitimate 

Website 

10 

B  J 

|]l  TippingPoint  IPS 
_ & 

Internet 
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II A  TippingPoint  IPS  in  a  company  can  stop  e-mails  with  embedded  phishing  links,  as 
well  as  exploits  in  desktop  software  used  by  phishers. _ 

□  The  device  also  can  block  intrusions  and  hacks  on  Web  sites  phishers  use 
to  hjjack  a  site. 


BY  PHIL  HOCHMUTH 

3Com  this  week  is  expected  to 
add  anti-phishing  capabilities  to 
its  TippingPoint  IPS  family  that 
could  help  organizations  lower 
the  risk  of  employees  being 
tricked  into  handing  over  sensi¬ 
tive  personal  or  corporate  data 
to  fraudulent  Web  sites. 

3Com  says  the  new  features 
can  block  phishing  at  every 
point  of  attack,  from  stopping 
e-mails  that  contain  links  to 
phishing  sites  to  inspecting  Web 
sites  for  fraudulent  content,  as 
well  as  protecting  owners  of 
legitimate  Web  sites  from  being 
hijacked  by  phishing  attacks. 

The  new  capabilities  are  avail¬ 
able  to  current  TippingPoint  cus¬ 
tomers  as  part  of  the  company’s 
regular  Digital  Vaccine  service, 
which  updates  the  devices  with 
new  virus  definitions,  signatures 
and  IPS  features. 

Phishing  attack  campaigns  in¬ 
volve  two  key  phases:  the  hijack¬ 
ing  or  infiltration  of  a  legitimate 
Web  site,  and  the  sending  of 
phishing  e-mails 

“Since  [the  TippingPoint  IPS] 
sits  on  the  network,  it  can  act  as 


a  blocking  agent  for  all  aspects,” 
of  a  phishing  attack,  says  Tod 
Beardsley,  lead  counter-fraud 
engineer  for  TippingPoint. 

The  TippingPoint  IPS  device 
can  protect  e-commerce  and 
other  Web  sites  that  find  them¬ 
selves  as  victims  on  the  begin¬ 
ning  phase  of  a  phishing  scam. 
3Com  says  the  IPS  can  block 
attackers  from  taking  advantage 
of  weaknesses  in  Web  server 
code  that  allow  attackers  to 
mimic  Web  sites  or  redirect  traf¬ 
fic  from  legitimate  Web  servers 
to  phishing  sites.  Vulnerabilities 
in  HTML,  JavaScript,  Microsoft 
Active  Server  Pages  and  other 
Web  page  code  are  common 
points  of  attack  for  phishers, 
3Com  says. 

The  TippingPoint  box,  pro¬ 
grammed  with  such  known  vul¬ 
nerabilities,  can  recognize  and 
block  such  hack  attempts. 

This  back-end  anti-phishing 
feature  is  running  at  a  large  Web 
server  hosting  outfit  based  in 
Houston. 

A  customer's  story 

An  average  of  around  9,000 


phishing  attacks  per  hour  are 
being  blocked  on  the  Web  host¬ 
ing  firms  network  since  the  anti¬ 
phishing  scanning  was  activated 
on  the  company’s  TippingPoint 
gear,  according  to  David  Wartell, 
network  administrator  for  Every¬ 
one’s  Internet. 

“Most  customers  are  good  at 
keeping  their  servers  secure,  but 
sometimes  machines  get  com¬ 
promised,”  which  can  leave  them 
open  to  phishing  scam  hijacks, 
Wartell  says. 

All  traffic  entering  the  server 
cages  at  Everyone’s  Internet 
now  goes  through  TippingPoint 
devices,  which  amounts  to 
around  1.2%  of  all  U.S.  Internet 
traffic,  according  to  Wartell.  He 
adds  that  network  throughput  is 
not  affected  by  running  all  traf¬ 
fic  through  the  TippingPoint 
devices. 

To  stop  attacks  at  the  most 
common  source  —  e-mails  with 
links  to  phishing  sites  —  the 
TippingPoint  device  can  scan 
and  filter  e-mails  based  on  com¬ 
monly  known  phishing  attack 
techniques.  According  to  3Com, 
stopping  such  e-mails  from 


entering  user  in-boxes  reduces 
the  risk  of  employees  being 
defrauded. 

To  also  block  users  from  visiting 
fraudulent  Web  sites,  the  Tipping- 
Fbint  gear  can  stop  a  connection 
to  a  phishing  site  even  after  some¬ 
one  clicks  on  a  link  to  the  site, 
3Com  says. 

The  IPS  device  scans  for 
known  exploits  in  Microsoft  In¬ 
ternet  Explorer  and  Outlook, 
which  are  used  to  fool  PC  users. 


The  TippingPoint  product  also 
scans  the  target  Web  site  to  look 
for  known  malicious  phishing 
code  or  other  signs  of  a  fake 
Web  site. 

3Com’s  TippingFbint  IPS  prod¬ 
ucts  range  from  $5,000  for  a  15M 
bit/sec  device  to  a  $170,000  for  a 
5G  bit/sec  box.The  Digital  Vaccine 
service  is  part  of  an  annual  ser¬ 
vice  and  support  fee  that  costs 
around  18%  to  20%  of  the  cost  of 
the  hardware.  ■ 


Gordano  beefs  up  mail  server  security 


BY  JOHN  FONTANA 

Messaging  server  vendor  Gor¬ 
dano  last  week  released  enhance¬ 
ments  for  its  mail  server  designed 
to  help  stem  the  flood  of  spam 
and  provide  an  extra  dose  of  anti¬ 
virus  protection. 

The  upgrades,  which  are  for  its 
Gordano  Messaging  Server 
(GMS)  1 1 ,  provide  an  outbound 
anti-virus  capability  that  checks 
e-mail  being  forwarded  from  the 
server  or  exchanged  through  col¬ 
laboration.  For  example,  if  a  user 
schedules  a  meeting  and  attaches 
a  spreadsheet  to  the  meeting  re¬ 
quest,  the  file  will  be  scanned 
before  being  exchanged  with 
another  user. 

Gordano  also  is  adding  support 
for  the  Sender  Policy  Framework 
(SPF),  which  uses  the  DNS  to  val¬ 
idate  that  e-mail  is  indeed  com¬ 
ing  from  the  domain  it  claims  to 
be  coming  from.  SPF  is  one  of  a 
handful  of  methods  of  validating 
the  e-mail  sender,  including 


DomainKeys,  DomainKeys  Iden¬ 
tified  Mail  and  SenderlD. 

“They  are  covering  all  the 
bases  in  terms  of  any  holes  in 
the  dam,  anything  that  can  hap¬ 
pen  as  the  result  of  malicious  e- 
mail.says  Chris  Williamson,  pres¬ 
ident  and  CEO  of  Market  Web 
Solutions,  a  hosted  e-mail  pro¬ 
vider.  “Covering  all  those  bases 
from  a  system  point  of  view  is 
very  beneficial  to  us.” 

Williamson  says  reducing  his 
infrastructure  workload  is  key.  “It 
helps  reduce  our  workload  con¬ 
siderably  when  we  don’t  have  to 
deal  with  messages  that  contain 
malicious  content.” 

Gordano’s  anti-virus  add-on  inte¬ 
grates  with  the  current  anti-virus 
engine  built  into  its  server,  which 
company  officials  say  limits  the 
performance  hit  on  scanning  mail 
leaving  the  server.  The  add-on 
scans  e-mail  sent  via  the  Post 
Office  Protocol  and  IMAP  and 
scans  Web-based  mail.  The  soft¬ 


Spam  stats 

Spam  continues  its  assault 
on  the  usefulness  of  e-mail, 
growing  more  than  65%  in 
volume  since  January  2002, 
according  to  online  message 
management  vendor  Postini. 

Monthly  volume  of  spam: 

(in  billions) 


3, 


IK 

■  Four  months  ago 

■  Two  months  ago 

S  Past  30  days:  (represents  20T 
bytes  of  data) 


ware  scans  content,  headers  and 
attachments  on  every  e-mail. 

Embracing  SPF 

Gordano  also  is  adding  SPF  sup¬ 
port  even  as  the  usefulness  of  the 
technology  is  being  questioned. 

While  SPF  was  initially  greeted 
with  promise  for  thwarting  spam¬ 
mers,  mail-filtering  company  MX 
Logic  recently  released  its  find¬ 
ings  on  e-mail  security  that  noted 
that  SPF  and  Sender  ID  authenti¬ 
cation  protocols  aren’t  widely 
used  and  that  spam-sending 
domains  continue  to  represent 
their  biggest  adopters. 

Gordano  officials  say  SPF  sup¬ 
port  is  just  another  security 
option. 

“SPF  is  not  completely  fool¬ 
proof  but  nothing  is,"  says  John 
Stanners,  managing  director  for 
Gordano.“People  with  the  knowl¬ 
edge  can  spoof  where  the  IP 
addresses  mail  is  coming  from 
—  in  which  case  all  authentica¬ 


tion  bets  are  off.  But  SPF  will  help 
with  a  lot  of  the  current  spam 
that  is  around.”  Stanners  says  this 
is  the  case  because  a  lot  of  spam 
comes  through  free  mail  ser¬ 
vices  such  as  Hotmail. 

Gordano  competes  with  Stalker, 
Rockliffe,  Mirapoint,  Scalix,  IPS- 
witch  and  Sendmail.  GMS  also 
competes  with  Microsoft  Ex¬ 
change  and  IBM/Lotus  Domino, 
especially  with  customers  migrat¬ 
ing  away  from  those  platforms. 

GMS  is  priced  at  $28  per  user, 
which  includes  GMS  Mail,  GMS 
WebMail,  GMS  Collaboration  for 
sharing  of  calendars,  contacts, 
tasks  and  notes  in  Outlook,  and 
GMS  Web  Organizer  for  Web- 
based  sharing  of  calendars,  con¬ 
tacts,  tasks  and  notes.  ■ 


LT  SECURITY 

Subscribe  to  our  free  newsletter. 

DocFinder:1017  www.networkworld.com 


10.10.05  •  www.networkworld.com  •  21 


Start-up  touts  attack-blocking  appliance 


BY  TIM  GREENE 

Start-up  Imperva  has  announced 
an  attack-blocking  appliance  that 
is  designed  to  help  businesses 
secure  their  networks  and  meet 
government  privacy  requirements. 

Secure  Sphere  Gateway  is  in¬ 
stalled  between  Web  servers  and 
the  network  and  analyzes  Web 
application  and  database  traffic. 
Based  on  this  analysis,  it  sets  a 
baseline  for  normal  traffic,  and 
flags  traffic  that  falls  outside  nor¬ 
mal  that  might  indicate  an 
attack. 

The  company  is  announcing  a 
high-end  hardware  platform 
called  G16  that  operates  at  2G 
bit/sec,  as  well  as  a  new  soft¬ 
ware  platform  that  inspects 
database  traffic.  The  Database 
Security  software  supports 
Oracle,  MS-SQL,  Sybase  and  DB2 
databases. 

Other  vendors’  equipment  does 
some  of  what  Imperva’s  does,  but 


Profile:  Imperva 


Employees:  50 

Funding:  $17  million  from  Accel  Partners,  US  Venture  Partners  and 
VenRock  Associates 


Location: 


Foster  City,  Calif.,  and 
Ramat  Gan,  Israel 


Founded 


Product 

GEO 


Secure  Sphere  Gateway 
Shlomo  Kramer, 
co-founder  of  Check  Point  Software 


Competitors:  IPLocks,  Application  Security,  Guardium,  F5,  NetContinuum,  Teros 


none  is  exactly  comparable,  says 
Andrew  Jaquith,  an  analyst  with 
the  Yankee  Group.  For  instance, 
Application  Security,  Guardium 
and  IPLocks  focus  on  protecting 
databases,  he  says,  while  Teros, 
Breach  Security  and  Protegrity 
aim  to  protect  Web  applications. 

SecureSphere  differs  in  that  it 
monitors  and  protects  at  the  Web 


browser,  Web  server,  application 
server  and  database  level.  “It’s  a 
vertical  integration  approach  to 
defending  applications  by  look¬ 
ing  at  them  as  a  stack  of  process¬ 
es  and  protecting  the  different  lay¬ 
ers,”  Jaquith  says. 

While  the  device  teaches  itself 
to  look  for  abnormal  requests, 
customers  must  set  policies  for 


what  to  do  about  suspicious  traf¬ 
fic.  The  device  can  block  the  traf¬ 
fic, do  so  for  a  set  period, email  an 
administrator  or  log  it  and  pass  it 
through. 

The  gateway  also  keeps  track 
of  which  users  access  what  data 
so  if  a  regulatory  agency  needs 
a  record  of  how  well  particular 
data  was  protected,  customers 
will  have  a  log  to  draw  from. 

Imperva  customer  FFF  Enter¬ 
prises,  a  $500  million  pharma¬ 
ceutical  distributor  in  Temecula, 
Calif.,  protects  two  of  its  sensitive 
applications  and  their  underlying 
databases  with  a  SecureSphere 
gateway,  says  Bob  Coates,  vice 
president  of  technology  for  FFF 

“We  looked  at  it  in  learn  mode 
for  six  months,”  Coates  says.  That 
gave  FFF  the  chance  to  evaluate 
how  well  it  performed  after  it 
established  a  baseline  for  normal 
traffic.  It  can  identify  for  example, 
if  one  user  who  has  not  accessed 


a  database  before  attempts  to  do 
so,  Coates  says. 

In  one  case  the  device  e-mailed 
Coates  that  an  internal  user  was 
trying  to  access  a  database  of  pri¬ 
vate  customer  data.  It  turned  out 
to  be  an  application  developer 
who  needed  the  data,  but  Coates 
says  it  demonstrated  how  effec¬ 
tive  the  device  could  be. 

He  has  not  had  to  demonstrate 
to  regulators  that  FFF  protects  its 
databases,  but  says  the  device 
will  meet  the  need. “I  believe  this 
will  position  us  quite  well  with 
[Health  Insurance  Portability  and 
Accountability  Act] ,  ”  he  says. 

The  SecureSphere  hardware 
acts  as  a  Layer  2  bridge,  so  has  no 
IP  address  to  be  discovered  by 
attackers.  It  also  requires  no  alter¬ 
ations  to  the  databases  it  protects, 
according  to  Imperva. 

SecureSphere  G16  supports  as 
many  as  100  servers  and  pricing 
starts  at  $1 20,000.  ■ 
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WET  INFRASTRUCTURE 

SECURITY  S  SWITCHING  HI  ROUTING  H  VPNS  IS  BANDWIDTH  MANAGEMENT  t  VOIP  i§  WIRELESS  LANS 


MessageLabs  expands  reach 

The  e-mail  security  vendor  takes  its  protective  services  to  the  Web. 


Short  Takes 


■  Lockdown  Networks  announced 
the  Lockdown  Enforcer,  an  appli¬ 
ance  for  network  access  control 
that  can  enforce  security  policies 
to  ensure  up-to-date  anti-virus  and 
spyware  protections  are  in  use  on 
desktops  before  allowing  access  to 
LANs.  The  Enforcer,  which  has 
options  for  both  agent-based  or 
agentless  scanning  of  machines, 
supports  802. lx  authentications, 
Windows-based  and  Web-based 
authentication.  Pricing  for  the 
Enforcer  starts  at  $20,000. 

■  Symantec  last  week  said  it 
would  buy  security  compliance  soft¬ 
ware  vendor  BindView  for  $209 
million  in  cash.  The  two  companies 
provide  software  to  help  businesses 
and  government  organizations  com¬ 
ply  with  regulatory  requirements 
such  as  the  Sarbanes-Oxley  Act 
and  the  Federal  Information 
Security  Management  Act  in  the 
U.S.,  and  the  Basel  II  financial  regu¬ 
lations  in  Europe.  Symantec’s  secu¬ 
rity  systems  use  software  agents 
to  ensure  compliance  with  security 
policies,  while  BindView’s  approach 
is  agentless,  Symantec  said,  adding 
that  the  two  approaches  are  com¬ 
plementary.  The  agent-based 
approach  is  more  suited  to  com¬ 
plex,  mixed  IT  environments,  while 
the  agentless  model  requires  less 
staff  to  manage  and  is  suited  to 
companies  with  similar  systems 
spread  across  many  sites, 

Symantec  said. 

■  McAfee  announced  ePolicy 
Orchestrator  3.6,  an  updated 
version  of  its  central  management 
console  for  deployment  and  report 
generation  for  McAfee’s  anti-virus, 
anti-spyware  and  other  security 
products.  The  latest  version  of  ePO 
adds  support  for  McAfee’s  host 
intrusion-detection  software, 
Microsoft's  clustering  services  plus 
security  alerts  issued  by  McAfee's 
Avert  research  labs  concerning 
newly  detected  threats.  The  cost 
for  ePO  is  $14.62  per  user  for  1,000 
to  2,000  users. 


BY  CARA  GARRETSON 

E-mail  security  vendor  MessageLabs  is 
extending  its  managed  services  to  the 
Web  with  its  announcement  last  week  of 
three  services  that  protect  companies 
from  threats  on  the  Web. 

MessageLabs’ Web  Pro¬ 
tect  comprises  anti¬ 
virus,  anti-spyware  and 
Web  filtering  services 
designed  to  keep  threats 
from  entering  a  corpo¬ 
rate  network  and  to  con¬ 
trol  employees’  Web 
access,  says  Brian 
Czarny,  vice  president  of 
product  management 
with  MessageLabs.  The 
company,  which  has 
played  in  the  messaging  anti-virus  and 
anti-spam  space  for  years,  says  increased 
threats  originate  from  intended  and 
unintended  Web  downloads. 

“What  you’re  starting  to  see  now  is  this 


BY  PHIL  HOCHMUTH 

Extreme  Networks  this  week  is  expect¬ 
ed  to  announce  network  and  device 
management  services  intended  to  give 
customers  a  clearer  picture  of  what  they 
have  in  terms  of  network  devices  and 
how  well  that  equipment  is  performing. 
Application-specific  management  ser¬ 
vices  for  VoIP  security  and  other  areas 
also  are  options  in  the  services  offering. 

Extreme’s  Premier  Services  Program 
(PSP)  mixes  in  network  device  manage¬ 
ment  and  monitoring,  asset  management, 
infrastructure  planning  and  network  per¬ 
formance  evaluation. 

The  Foundation  Services  features  give 
customers  access  to  Extreme  engineers 
and  support  professionals  through  week¬ 
ly  calls  with  Extreme  staff,  the  delivery  of 
updated  reports  on  network  performance 
and  availability,  and  quarterly  on-site  vis¬ 
its  from  Extreme  engineers  with  a  cus¬ 
tomer’s  network  team.  Customers  also 
can  choose  an  option  in  which  Extreme 
support  staff  monitor  the  performance  of 
customer  networks  and  send  alerts  to 
customers  during  certain  events,  such  as 


convergence  —  threats  across  e-mail,  the 
Web,  instant  messaging  —  so  we’re  really 
focused  on  taking  the  intellectual  proper¬ 
ty  and  knowledge  we’ve  developed 
around  e-mail  [security]  and  applying 
that  to  the  Web,”  Czarny 
says,  adding  the  compa¬ 
ny  plans  to  release  ser¬ 
vices  for  securing  1M 
communications  within 
the  next  year. 

Of  the  three  areas  that 
the  new  Web  services 
cover  —  anti-virus,  anti- 
spyware  and  Web  filter¬ 
ing  —  MessageLabs  says 
it’s  gotten  the  most  inter¬ 
est  from  customers  in 
fighting  spyware. 

At  Perkins  Eastman  Architects,  which 
has  more  than  500  employees  in  seven 
offices  throughout  the  country, spyware  is 
a  major  headache  for  the  IT  department, 
says  Michael  Gonda,  senior  systems 


equipment  failures,  network  attacks  or 
other  issues.  Users  also  get  access  to  a 
portal  interface  to  view  their  own  net¬ 
work  performance  through  Extreme’s 
hosted  software. 

Applications,  traffic  types  and  other  uti¬ 
lization  statistics  also  can  be  monitored 
through  the  PSP  service.  The  monitoring 
service  lets  users  know  what  applications 
are  most  and  least  used  on  a  network,  as 
well  as  what  kinds  of  software  are  con¬ 
suming  the  most  network  bandwidth. 

Another  area  of  the  service  provides 
documentation  of  physical  network 
assets,  including  maps  of  what  devices 
are  interconnected,  maps  of  virtual  LAN 
topologies,  network  addressing  schemes 
and  redundancy  paths. 

By  tying  users  more  closely  to  support 
specialists  and  product  engineers,  Ex¬ 
treme  says  the  service  offerings  give  cus¬ 
tomers  another  layer  of  assurance  for  net¬ 
work  availability  and  performance 
beyond  standard  point-product  support. 
While  some  Extreme  resellers  offer  man¬ 
aged  services,  Extreme  says  PSP  will  not 


administrator  with  the  architecture  firm. 
“There  was  a  time  when  80%  of  the 
phone  calls  [to  the  help  desk]  were 
directly  related  to  spyware,  even  though 
the  users  didn’t  know  it,”  he  says.The  com¬ 
pany  is  beta  testing  MessageLabs’  new 
suite. 

Protecting  customers 

The  anti-virus  and  anti-spyware  services 
protect  customers  by  having  their  Web 
traffic  flow  through  MessageLabs’  servers 
so  downloads  can  be  cleansed  of  viruses 
and  other  malware  using  heuristics  and 
scanning  techniques,  says  Martin  Brown, 
group  product  manager  of  Web  services 
with  MessageLabs. 

With  the  Web  filtering  service,  a  cus¬ 
tomer’s  traffic  first  flows  through 
MessageLabs’  servers  so  that  predefined 
corporate  policies,  such  as  not  allowing 
employees  to  access  auction  sites  during 
business  hours,  can  be  applied  and 
See  MessageLabs,  page  26 


compete  or  crowd  out  such  services, 
since  channel  partners  can  offer  PSP 
alongside  the  products  they  sell. 

One  longtime  Extreme  user  welcomes 
the  new  service  focus  a  company  that  in 
the  past  was  mostly  focused  on  cranking 
out  new  products. 

“As  an  Extreme  customer,  I  would  like  to 
see  more  service  offerings,”  says  Bill 
Senter,  head  of  network  services  at  Texas 
Christian  University  in  Fort  Worth.  TCU 
runs  a  backbone  of  Extreme  Black- 
Diamond  switches,  which  support  such 
applications  as  IP  video  streaming  and 
voice.  Alpine  and  Summit  switches  from 
Extreme  also  connect  servers  and  end- 
user  PCs  to  the  campus  LAN  and  WAN. 
Senter  says  he  will  investigate  the  PSP 
offering  to  see  if  it  fits  the  school’s  needs. 

The  PSP  starts  at  $15,000  for  50  man¬ 
aged  devices.  ■ 
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Keeping  an  eye 
on  spyware 

The  installed  base  of  corpo¬ 
rate  anti-spyware  will  grow 
from  16  million  users  in  2005 
to  nearly  541  million  users  in 
2009,  an  average  annual 
growth  rate  of  146%. 


Extreme  launches  managed  service 


Define  Your  Open  Enterprise.™ 

What  does  Open  mean  to  you?  Community?  Security? 
Risk?  Reward?  Can  it  leverage  legacy  systems? 
Consolidate  and  simplify?  Do  you  believe  in  its  power 
and  potential? 

Introducing  Novell  software  for  the  open  enterprise™ 
—  the  only  software  that  makes  Open  work  for  you. 
From  desktop  and  data  center  to  identity  manage¬ 
ment,  resource  management  and  collaboration,  our 
flexible  combination  of  open  source  and  commercial 

Novell® 

This  is  your  open  enterprise.™ 

www.novell.com 


software  delivers  more  than  you  ever  imagined.  The 
power  to  manage  IT  assets  and  effort  automatically. 
Freedom  from  single  vendor  lock-in.  Security  that  keeps 
the  right  information  safe  and  the  right  people  informed. 
And  the  ability  to  connect  people  to  performance  and 
business  to  possibilities.  So  you  can  build  an  open 
enterprise  that  makes  sense  for  you  —  and  your  future. 
This  is  Novell  software  for  the  open  enterprise.  The 
Open  you’ve  wanted  all  along. 


Copyright  ©  2005  Novell,  Inc.  All  Rights  Reserved.  Novell,  the  Novell  logo,  ZENworks  and  GroupWise  are  registered  trademarks;  SUSE,  This  is  your  open  enterprise.  Software  for  the 
open  enterprise  and  Deline  your  open  enterprise  are  trademark  ol  Novell,  Inc.  in  the  United  States  and  other  countries.  All  third-party  trademarks  are  the  property  of  their  respective  owners. 
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F5,  Gitrix  get  apps  up  to  speed 


BY  PHIL  HOCHMUTH 

F5  Networks  and  Citrix  Systems  this 
week  are  expected  to  launch  software 
and  hardware  products  targeted  at  small 
and  large  businesses  that  want  to  speed 
up  and  secure  Web-based  applications. 

F5  is  introducing  a  Web  application  fire¬ 
wall  module  for  its  application  switches, 
with  the  promise  of  adding  greater  levels 
of  data  protection  and  security  for  e-com- 
merce  applications.  F5’s  new  rival  Citrix  is 
launching  an  application  acceleration 
box  under  its  recently  acquired  NetScaler 
brand,  aimed  at  speeding  up  and  securing 
small  and  midsize  server  farms. 

F5’s  Application  Security  Module  is  soft¬ 
ware  that  runs  on  the  vendor’s  Big-IP  line 
of  Layer  4-7  application  switches  and 
inspects  Web  traffic  at  Layer  7  and  can 
actively  filter,  reroute  or  alter  HTTP  con¬ 
tent  to  make  Web  applications  run  more 
securely,  F5  says. 

The  software  can  look  into  Layer  7,  or 
application  layer,  packet  data  such  as 
HTTP  address  destinations,  cookie  infor¬ 
mation  and  other  data.  Instead  of  rerout¬ 
ing  to  servers  or  other  devices  based  on 
the  data,  the  software  can  alter  the  con¬ 
tents  of  the  packet. 

F5  says  an  example  of  this  is  stripping 
out  credit  card  information  or  other  sen¬ 
sitive  customer  data  from  Web  traffic,  or 
identifying  harmful  content  such  as 
malicious  code  in  a  Web  packet  and 
deleting  it. 

F5  says  the  Application  Security  Module 
running  on  F5  switches  —  which  typically 


Layer  4-7  squeeze 

While  Cisco  sold  $112  million  in 
Layer  4-7  gear  in  the  second  quarter, 
the  market  is  tightening  up. 


Meanwhile,  analysts  predict  the 
market  to  double  as  more 
businesses  implement  application 
acceleration  technology. 


2005  2009 
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sit  in  front  of  servers  in  a  data  center  — 
provides  better  security  for  Web  applica¬ 
tions  than  network  firewalls,  which  pro¬ 
vide  more  general  traffic  filtering.The  soft¬ 


ware  also  adds  security  features  to  standard 
HTTP  Web  applications  that  would  be  cost¬ 
ly  and  time-consuming  to  code  in  the  appli¬ 
cations  themselves,  the  vendor  adds. 

The  software  starts  at  $15,000.  It  runs  on 
all  models  of  F5’s  Big-IP  switches  running 
Version  9  of  its  TM/OS  switch  operating 
system. 

Citrix’s  new  offering  is  a  scaled-down 
version  of  its  Application  Switch 
Enterprise  Edition,  which  runs  in  such 
data  centers  as  Google  and  Merrill  Lynch. 
Citrix  says  the  Application  Switch  Stan¬ 
dard  Edition  is  targeted  at  customers  that 
would  not  be  able  to  afford  the  high-end 
NetScaler  box,  but  need  more  application 
acceleration  technology  than  basic  Layer 
4  load  balancing  switches,  and  possibly 
TCP/IP  offload  cards  or  SSL  acceleration 
hardware  running  on  servers. 

The  Standard  Edition  product  is  the  first 
product  application  acceleration  hard¬ 
ware  launch  for  the  company  since  it 
bought  NetScaler  in  June  for  $300  million. 

The  device  runs  at  600M  bit/sec  for  top 
throughput, as  opposed  to  the  4.8G  bit/sec 
of  the  Enterprise  box.  Also,  the  small  and 
midsize  business-focused  device  includes 
Layer  4-7  switching,  load  balancing,  SSL 
offload  and  Layer  7  denial-of-service  traf¬ 
fic  identification  features.  But  such  ser¬ 
vices  are  implemented  at  lower  rates  of 
processing  on  the  Standard  Edition  box, 
the  vendor  says. 

The  Citrix  NetScaler  Application  Switch 
Standard  Edition  costs  $17,500.  The 
Enterprise  Edition  starts  at  $35,000.  ■ 


MessageLabs 

continued  from  page  23 

requests  are  blocked  accordingly  Brown 
says. 

These  new  Web  offerings  from  Message- 
Labs  compete  with  products  from 
SurfControl,  Websense  and  others  that 
block  malware  and  control  Web  access 
from  a  company’s  desktops,  servers  and 
gateway. 

Easing  administration 

But  MessageLabs  says  it’s  the  only  com¬ 
pany  to  offer  this  protection  as  a  man¬ 
aged  service,  making  setup  and  ongoing 
administration  easier.  And  that  is  a  key 
reason  why  Perkins  Eastman  Architects  is 
evaluating  MessageLabs’  offerings. 

“A  lot  of  our  offices  are  unmanaged,  so 
because  there  aren’t  a  lot  of  hands  on 
the  hardware  we  try  to  keep  our 
machines  as  clean  as  we  can,”  Gonda 
says.  “Because  we  have  so  many 
machines  and  no  way  of  physically 
touching  them,  the  only  way  to  clean  up 
spyware  is  to  send  one  of  our  IT  people 
to  one  of  these  sites,  and  that’s  not  really 
a  good  use  of  our  time.” 

Because  the  company  already  uses 
MessageLabs’  managed  e-mail  security 
services,  the  Web  services  seem  like  a 
natural  fit,  he  says. 

The  new  Web  services  cost  $3  per  user, 
per  month  for  one  service,  $4.50  per 
user,  per  month  for  two  services,  and  $6 
per  user,  per  month  for  all  three  services. 
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BMC  rolls  out  new  additions  to  identity  suite 


BY  JOHN  FONTANA 

BMC  Software  last  week  expanded  its  identity  manage¬ 
ment  suite  with  three  products  designed  to  help  end  users 
handle  regulatory  compliance  and  integrate  identity  data 
with  other  companies. 

BMC  Identity  Compliance  Manager,  Identity  Federation 
Manager  and  Identity  Discovery  which  supports  integration 
of  identity  data  with  BMC’s  Configuration  Management 
Database,  represent  the  second  of  a  three-step  plan  to  create 
an  identity  management  suite,  that  BMC  hopes  will  be 
completed  in  2006. 

The  company  is  banking  on  its  Identity  Management 
Suite  5.0  to  provide  users  with  tools  for  regulatory  compli¬ 
ance,  identity  allocation  and  management,  identity  federa¬ 
tion  and  integration  of  identity  with  network  applications 
and  business  process  workflows. 

BMC  earlier  this  year  acquired  Calendra  for  its  provision¬ 
ing  technology  and  OpenNetwork  for  its  Web  access  man¬ 
agement  software.  That  software  now  represents  the  first 
phase  of  the  plan.The  three  new  products,  which  represent 
the  second  phase,  were  all  built  from  the  ground  up  by 
BMC,  including  a  common  user  interface  and  workflow 
engine  that  cuts  across  all  phases  of  the  identity  suite. 


“What  they  have  done  here  is  make  things  modular  and 
have  it  sit  on  top  of  what  is  now  a  common  architecture,” 
says  Jonathan  Ftenn,  an  analyst  with  Forrester  Research. 
“You  buy  any  component  and  it  uses  the  underlying  tech¬ 
nology  like  workflow  engines  and  connectors  and  other 
technologies  you  don’t  have  to  buy  with  each  component.” 

BMC  competitors  Computer  Associates,  HRIBM,  Microsoft, 
Oracle,  RSA  and  Sun  also  face  the  integration  challenge. 

Identity  Compliance  Manager  lets  users  set  compliance 
policies  based  on  user  identities.The  software  also  ensures 
that  policies  are  implemented  and  it  provides  a  validation 
feature  that  compares  network  activity  against  corporate 
compliance  policies. 

“Now  managers  have  a  process  and  a  tool  that  allows 
them  to  keep  the  organization  in  good  corporate  compli¬ 
ance,”  says  Somesh  Singh,  vice  president  of  the  identity 
management  business  unit  at  BMC. 

BMC  also  is  supporting  identity  sharing  with  its  Identity 
Federation  Manager,  which  allows  identities  to  be  shared 
across  department  or  corporate  boundaries.  The  software 
supports  standard  protocols  Security  Assertion  Markup 
Language  (SAML)  1.0,  SAML  2.0,  Liberty  1D-FF  1.0  and 
Shibboleth,  as  well  as  WS-Federation,  which  is  backed  by 


IBM  and  Microsoft. 

With  Identity  Discovery  BMC  is  integrating  identity  data 
into  its  Atrium  Configuration  Management  Database.  This 
lets  users  include  data  about  users  in  addition  to  informa¬ 
tion  about  hardware,  software  and  applications.  The  com¬ 
bination,  BMC  says,  strengthens  change  and  configuration 
by  supplying  information  on  specific  end  users  and  how 
they  will  be  affected. 

BMC  prices  its  software  on  a  usage  basis  with  the  start¬ 
ing  price  for  Identity  Federation  Manager  at  $10,000  ($3 
per  user),  Compliance  Manager  at  $15,000  ($6  per  user) 
and  Identity  Discovery  at  $60,000  ($15  per  user).  ■ 
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This  show  will  have  leaders  from  AT&T,  EMC,  HP,  Intel,  Microsoft,  Sun 
and  more  talk  about  security,  collaboration,  IT  flexibility  and  more  at  the 
annual  gathering  of  the  key  stakeholders  in  enterprise  IT. 

DocHnder:  7638 


Today,  James  configured  six  critical  servers  in 
six  different  states  -  all  before  lunchtime  in  D 


With  Avocent  data  center  management  solutions,  the  world  can  finally  revolve  around  you.  Avocent 
DSView"  3  management  software  gives  you  a  secure,  centralized  point  of  control  -  whether  your  server  rooms  are 
across  the  hall  or  across  the  nation.  With  more  than  20  years'  experience,  Avocent  offers  multi-platform,  multi-device  access 
that  fits  seamlessly  into  your  multi-tasking  lifestyle.  You  can  manage  critical  servers,  networks  and  more,  all  from  a  single 
interface.  And  you  can  do  it  from  any  location.  Avocent  helps  you  save  time,  improve  efficiencies  -  and  brag  a  little  too. 
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Can  Skype  be  a  good  corp.  citizen? 


Kevin  Toliy 


To  date,  Skype  has  existed  out¬ 
side  of  the  usual  corporate  IT 
structure,  offering  individual  con¬ 
nectivity  But  Skype’s  modus 
operandus  is  to  “use  its  users”  as 
relay  points  —  rather  than  cen¬ 
tralized  servers.  And  as  soon  as 
the  user  plugs  into  the  corporate 
net,  that  network  also  becomes  a 
potential  Skype  resource.  As  such, 
Skype  needs  to  do  the  diligence 
to  become  a  good  citizen  on  that 
network. 

While  attempts  to  prod  Skype 
into  changing  its  ways  had  little 
success  when  it  was  a  stand-alone 
private  company  headquartered 


in  Luxembourg,  as  a  wholly 
owned  unit  of  an  American  pub¬ 
lic  company  that  likely  will 
change.  But  what  has  to  happen? 

Essentially  Skype  need  not  actu¬ 
ally  change  the  way  it  does  what  it 
does,  it  just  needs  to  clearly  dis¬ 
close  its  MO  to  the  individual  user, 
as  well  as  start  providing  ways  for 
corporate  network  managers  to 
proactively  manage  the  use  and 
behavior  of  Skype  resources  (i.e., 
your  laptop)  when  connected  to 
the  corporate  network. 

In  response  to  my  recent  col¬ 
umn  outlining  Skype’s  peer-to- 
peer  architecture  (www.network 
world.com,  DocFinder:  9223),  a 
reader  involved  in  corporate  con¬ 
verged  networks  wrote:  “Deliver¬ 
ing  a  consistently  high-quality  ser¬ 
vice  seems  problematic  ...as  does 
any  kind  of  debugging  or  trou¬ 
bleshooting.  . . .  and  most  security 
types  that  I  know  aren’t  exactly 
enamored  by  inviting  applica¬ 


tions  [into  their  networks]  that 
excel  at  concealing  payloads  and 
bypassing  firewalls.” 

While  Skype  has  yet  to  turn  its 
interests  toward  taking  a  corpo¬ 
rate  network  view  of  what  it  offers, 
third  parties  have  emerged  to 
bridge  the  gap.  Commercial  peer- 
to-peer  blockers  are  already  avail- 

Skype  . . .  needs 
to  clearly  disclose 
its  MO  to  the  indi¬ 
vidual  user. 

able  on  the  market. 

Making  corporations  choose  a 
“block”  or  “allow”  strategy  is  prob¬ 
ably  not  the  best  thing  for  Skype 
in  the  long  run.  Skype  should  con¬ 
sider  working  with  third  parties 
and  providing  its  own  tools  to 
help  network  managers  “see”  its 
presence  in  their  networks  and, 


where  they  allow  it  to  remain,  be 
able  to  manage  it  by  invoking  lim¬ 
itations  on  which  resources  are 
used  —  bandwidth,  CPU  —  in 
which  machines.  If  the  corporate 
network  is  contributing  to  Skype’s 
business  by  serving  as  a  Skype 
resource  (while  also  getting  to  use 
Skype),  it  should  have  some  say 
over  how  its  resources  are  used. 

To  the  end  user,  Skype  should 
clearly  state  in  a  splash  screen 
that  one’s  computer  can  be  used 
for  purposes  other  than  transmit¬ 
ting  and  receiving  one’s  own  calls. 
Furthermore,  it  should  provide 
real-time  visibility  to  whatever 
“relay”  functions  one’s  machine  is 
being  called  on  to  deliver. 

Another  writer  asked  how  I 
knew  that  some  Skype  calls  from 
adjacent  machines  were  routed  a 
continent  away  and  back.  Not 
from  Skype,  that’s  for  sure.  I  had  to 
harvest  my  information  from  trac¬ 
ing  conversations  and  inspecting 


the  resulting  packet  stream.  It 
would,  of  course,  be  simple  for 
Skype  to  include  a  real-time  mon¬ 
itor  to  display  the  path  that  a  con¬ 
versation  is  traveling. 

Furthermore,  Skype’s  configura¬ 
bility  vis-a-vis  “participation”  in  the 
peer  network  is  virtually  nil.When 
you  are  on  your  machine  it  is  fair 
game  for  use.  (Predecessor  Kazaa 
did  allow  such  configuration.) 
Perhaps  Skype  should  consider 
allowing  users  to  pay  a  fee  to  be 
able  to  configure  their  level  of  par¬ 
ticipation  in  the  peer-to-peer  net¬ 
works.  Free  users  wouldn’t  have 
that  feature. 

The  way  is  clear,  but  does  Skype 
have  the  will  to  become  a  good 
corporate  citizen? 

Tolly  is  president  of  The  Tolly 
Group,  a  strategic  consulting  and 
independent  testing  company  in 
Boca  Raton,  Fla.  He  can  be 
reached  at  ktolly@tolly.com. 


PGP  widens  encryption 
software  offerings 

BY  ELLEN  MESSMER 

PGP  last  week  announced  the  second  version  of  its  PGP  Universal 
desktop  encryption  software,  adding  a  way  for  customers  to  encrypt 
the  entire  contents  of  a  computer,  including  the  operating  system. 

PGP  Universal  2.0  will  have  an  option  for  what  PGP  is  calling  “whole 
disk  encryption,”  because  corporate  users  fail  to  encrypt  sensitive 
information  that  they  should,  the  company  says.  The  first  version  of 
PGP  Universal  was  limited  to  file  and  folder  encryption  methods  that 
require  the  user  to  select  which  ones  to  conceal  via  PGP’s  encryption- 
key  technology  With  PGP  Universal  2.0,  expected  to  ship  mid- 
November,  the  company  will  compete  more  directly  against  security 
vendors  PointSec  and  Utimaco. 

PGP  also  is  adding  the  same  whole-disk  encryption  capability  to  its 
stand-alone  encryption  product  PGP  Desktop  Professional  9.0  for 
individual  users  and  small  businesses. 

PGP  Desktop  Professional  lacks  many  management  features  avail¬ 
able  in  PGP  Universal  2.0, such  as  management  of  encryption  keys  via 
Lightweight  Directory  Access  Protocol-based  directories,  including 
iPlanet,  Microsoft  Active  Directory  and  Novell  NDS. Another  difference 
is  PGP  Universal  2.0  can  make  use  of  a  corporate  key  to  unlock  and 
recover  any  data  the  user  scrambled. 

The  new  releases  support  certificate  and  message  formats  that 
include  X.509,  OpenPGP  and  S/MIME.  Key  types  are  either  RSA  or 
Diffie-Hellman  Digital  Signing  Standard,  with  maximum  key  length 
of  4,096  bits.  Allowed  ciphers  are  AES,  IDEA,  CAST,  Twofish  and 
Triple-DES. 

PGP  this  week  is  expected  to  announce  support  for  the  Research  in 
Motion  BlackBerry  handheld  messaging  device. 

This  would  provide  centrally  managed  PGP  e-mail  encryption  for 
the  BlackBerry 

'Hie  software,  costing  $199,  is  targeted  for  shipment  late  next  month. 
PGP  Universal  2.0  costs  $250  per  seat  for  the  corporation;  PGP 
Desktop  professional  costs  $150.  ■ 


WLAN  QoS  standard  approved 


BY  STEPHEN  LAWSON,  IDG  NEWS  SERVICE 

A  specification  that  could  improve  voice  and 
video  on  wireless  LANs  has  received  approval 
from  the  IEEE,  ending  a  long  standards-setting 
process  but  possibly  setting  the  stage  for  more 
work  on  the  problem. 

The  standards  board  of  the  full  IEEE  approved 
the  802.1  le  specification  for  publication  in  late 
last  month,  according  to  Geri  Mitchell-Brown,  Wi¬ 
Fi  strategist  at  SpectraLink,  a  maker  of  voice  over 
Wi-Fi  systems. 

The  standard  is  a  set  of  technologies  for  priori¬ 
tizing  traffic  and  preventing  packet  collisions  and 
delays,  which  should  improve  the  experience  of 
users  making  VoIP  calls  and  watching  video  over 
WLANs. 

Mitchell-Brown  expects  vendors,  and  the  Wi-Fi 
Alliance,  to  adopt  specific  elements  of  the  standard 
as  appropriate  for  common  demands  by  users.  The 
Wi-Fi  Alliance  has  adopted  a  subset  of  the  standard, 
called  WMM  (Wi-Fi  Multimedia),  which  has  been 
adopted  by  several  WLAN  vendors. 

On  WLANs  that  are  based  on  standard  802.11, 
all  users  share  the  network’s  capacity,  and  no 
packet  gets  priority  over  any  other.  This  usually 
isn’t  a  problem  with  typical  data  applications, 
such  as  exchanging  e-mail  and  browsing  the 
Web,  but  with  voice  calls  and  streaming  video, 
packets  have  to  get  across  the  network  at  the 
right  time. 

The  802.1  le  specification  allows  packets  to 
gain  priority  by  defining  four  traffic  classes,  each 
with  its  own  queue.  By  default,  these  are  voice, 
video,  best  effort  and  background,  says  Ben 
Guderian,  vice  president  for  market  strategies 


and  industry  relations  at  SpectraLink.  The  defini¬ 
tions  of  the  four  classes  could  be  changed  from 
the  default.  To  identify  the  class  of  each  packet, 
the  standard  uses  markers  similar  to  those  used 
in  wired  Ethernet,  he  says.  Seeing  those  markers, 
an  access  point  could  give  voice  packets  top  pri¬ 
ority  for  transmission,  followed  by  video  and  so 
on,  he  says. 

That  piece  combines  with  other  mechanisms 
for  preventing  collisions  between  packets, 
Guderian  adds.  Another  key  element  of  the  stan¬ 
dard  is  a  way  of  timing  communications  with 
client  devices  intended  to  conserve  battery  life  in 
handheld  devices,  he  says. 

The  new  standard  is  a  good  start,  according  to 
IDC  analyst  Abner  Germanow. 

“It’s  a  fairly  good  standard  for  small  wireless 
LAN  deployments  where  you  have  a  need  to  pri¬ 
oritize  certain  traffic  types,  but  it  may  not  be  the 
right  standard  for  doing  QoS  in  large-scale  enter¬ 
prise  environments,”  Germanow  says. 

The  problem  with  802. 1  le  is  that  it  puts  the  power 
to  request  priority  in  the  client,  Germanow  says.  As 
a  result,  “anyone  has  the  ability  to  mark  e-mail  as 
high-importance,”  he  says.  In  larger  deployments 
more  control  will  have  to  reside  in  centralized 
servers  or  network  mechanisms,  he  says. 

As  a  result,  the  process  of  standardizing  priority 
in  WLANs  may  be  just  beginning,  Germanow 
says.  Vendors  such  as  Meru  Networks  already 
offer  mechanisms  better  suited  to  large  enterpris¬ 
es,  and  it’s  likely  that  vendors  will  try  to  put  more 
advanced  technology  into  another  standard  that 
would  go  into  WLAN  gear  alongside  802.1  le,  he 
says.  ■ 
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High  availability  & 
Reliability 

•  Resilient  switching  and  routing  foundation 

•  Global  load  balancing  for  multi-site 
scalability  and  survivability 

•  Link  aggregation 

•  Rapid  and  stateful  session  failover 

•  RSTP,  VRRP  for  switch  and  router 
redundancy 

•  Redundant  power  supplies 

SECURITY 

•  DoS  protection  up  to  4  million  SYN/sec 

•  Wire-speed  ACLs 

•  Application  rate  limiting 

•  Secure  device  management 

•  sFlow  traffic  monitoring 


SUPERIOR  PERFORMANCE 

•  Up  to  1 40,000  L4  connections/sec 

•  Application  throughput  from  2  to  1 2  Gbps 

•  Wire-speed  Layer  2/3  forwarding 

•  Scalable  processor  performance 


SCALABILITY  Sc 
EXPANDABILITY 

•  Port  expansion  to: 

•  48  Gigabit  Ethernet 

•  48  10/100  Mbps  Ethernet 

•  4  1 0-Gigabit  Ethernet 


Rich  features 

•  Intelligent  content  switching  using 
URL,  HTTP,  XML,  cookies,  SSL 
ID  and  others 

•  IP  NAT 

•  RIPv2,  OSPF  routing 
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•  In-line,  one-ARM  and  Direct  Server 
Return  modes 

•  Web,  SNMP,  INM  and  Cisco-like  CLI 


ServerIronGT  E-Series 

Uptime,  scalability,  performance 
and  security  are  the  watchwords 
for  your  network.The  Serverlron® 
application  switch  is  designed  for 
this  environment.  Its  advanced 
switch-based  architecture 
features  a  scalable  content 
switching  engine  with  hardware- 
based  DoS  protection  delivering 
the  industry’s  most  powerful 
and  secure  application 
switching  solution. 
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5ERVERIRON  450  AND  850 


S  ERVERl  RONXL 


SERVERlRONSA  ACCELERATORS 


Foundry  Networks,  Inc.  is  a  leading  provider  of  high-performance  Enterprise  and  Service  Provider  switching,  routing  and  Web  traffic  management  solutions 
including  Layer  2/3  LAN  switches,  Layer  3  Backbone  switches,  Layer  4-7  Web  switches,  wireless  LAN  and  access  points,  access  routers  and  Metro  routers. 
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For  more  information  please  call:  us/canada  1  888  TURBOLAN, 
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Is  your  IT  strategy  delivering  the  value 
and  impact  your  enterprise  demands? 

Now  more  than  ever,  CIOs  and  other  senior  IT  decision  makers  are  being  challenged  to  leverage  IT  as  a  way  to 
deliver  strategic  value  and  bottom  line  results  to  the  enterprise. 


OUR  INFLUENTIAL,  IT-DEFINING 
SPEAKERS  INCLUDE: 

♦  EDWARD  AMOROSO,  Chief  Information  Security  Officer,  AT&T 


On  October  24-26,  all  the  key  players  driving  the  $1  trillion  enterprise  IT  market  -  CIOs,  CTOs,  CEOs,  investors  and 
analysts  -  will  convene  at  VORTEX  2005  to  explore,  debate  and  offer  solutions  to  the  most  pressing 
challenge  facing  IT  leaders  today  -  how  to  effectively  deliver  value  and  ROI  to  the  enterprise. 


♦  SAMEER  BADE,  VP,  Clinical  IT  Strategies,  MedStar 

♦  DAVID  BERGEN,  SVP  &  CIO,  Levi  Strauss  &  Co. 

♦  SUSAN  L.  BOSTROM,  SVP,  Internet  Business  Solutions  Group  and 
Worldwide  Government  Affairs,  Cisco  Systems 

♦  REBECCA  J.  JACOBY,  Vice  President,  Customer  Service  & 
Operational  Systems,  Cisco  Systems,  Inc. 

♦  MARTY  CHUCK,  SVP  &  CIO,  Electronic  Arts 

♦  DAVID  L.  COHN,  Director,  Business  Informatics,  IBM  T.  J.  Watson 
Research  Center 

♦  WILLIAM  T.  (BILL)  COLEMAN,  Founder,  Chairman  &  CEO,  Cassatt 

♦  DAVID  DEWALT,  President,  EMC  Software  Group 

♦  NORM  FJELDHEIM,  SVP  &  CIO,  QUALCOMM 

♦  RYAN  GRANARD,  CIO,  DolphinSearch 

♦  DONALD  A.  HAILE,  CIO,  fidelity  Investments 

♦  DAVID  HEMENDINGER,  CTO,  Lifespan 

♦  ALBERT  HITCHCOCK,  CIO,  Nortel  Networks 

♦  ED  KAMINS,  CIO  &  Head  of  Operational  Excellence; 

Senior  Vice  President,  Avnet,  Inc. 

♦  ANN  M.  LIVERMORE,  EVP,  Technology  Solutions  Group, 
Hewlett-Packard  Company 

♦  DAVE  MARGULIUS,  Analyst,  Enterprise  Insight 

♦  DR.  DOUGLAS  C.  MERRILL,  Senior  Director,  Information 
Technology,  Google  Inc. 

♦  N.R.  NARAYANA  MURTHY,  Chairman  &  Chief  Mentor, 

Infosys  Technologies  Ltd. 

♦  RAY  OZZIE,  CTO,  Microsoft 

♦  GREG  PAPADOPOULOS,  EVP  &  CTO,  Sun  Microsystems 

♦  MATTHEW  J.  SZULIK,  Chairman,  CEO  &  President,  Red  Hat,  Inc. 

♦  CHRIS  S.  THOMAS,  Chief  Strategist,  Director  of  Strategic 
Initiatives,  Solutions  Market  Development  Group, 

Intel  Corporation 

♦  DAVID  WATSON,  Vice  President  &  CTO,  Kaiser  Permanente 
Information  Technology 


KEY  HIGHLIGHTS  OF  THIS  YEAR'S  VORTEX  INCLUDE: 

►  Hear  from  top  CIOs  and  Enterprise  IT  executives  from  Avnet, 

Electronic  Arts,  Fidelity,  Kaiser  Permanente,  Levi  Strauss, 

Medstar,  Nortel  and  QUALCOMM  as  they  discuss  and 
debate  how  to  deliver  business  value  through  IT  innovation. 

►  Go  behind  the  scenes  as  we  challenge  senior  IT  executives  from 
companies  like  AT&T,  Cisco,  EMC,  HP,  IBM,  Google,  Intel, 

Microsoft,  Red  Hat  and  Sun  to  provide  frank  answers  on  their 
company's  strategy  in  the  areas  of  security,  mobility,  collaboration, 
virtualization,  Open  Source,  storage  and  more. 

►  In  advance  of  the  release  of  his  new  book,  Dealing  with  Darwin ,  Geoffrey  Moore  will  provide  insight  into 
his  groundbreaking  Core  vs.  Context  theory  and  its  potential  impact  on  your  IT  enterprise. 

Don't  miss  this  exceptional  opportunity  to  strengthen  your  IT  strategy. 
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HP  buys  RLX,  targets  Linux  management 


BY  JENNIFER  MEARS 

HP  is  bolstering  its  management  tools  for 
blade  servers  with  a  plan  to  acquire  RLX 
Technologies  and  its  Linux-based  server- 
management  software. 

Terms  of  the  deal,  which  is  expected  to 
close  in  the  next  30  days,  were  not  released. 
The  expected  buy  is  the  latest  move  by  HP 
to  fill  out  its  software  management  portfo¬ 
lio  through  acquisition.  Last  month,  it 
acquired  Peregrine  Systems,  which  makes 
asset  management  software,  and  AppIQ,  a 
storage  resource  management  company 

RLX  was  a  pioneer  in  the  blade  server 
market,  but  exited  the  hardware  business 
late  last  year, saying  pressure  from  the  major 
systems  vendors, such  as  IBM,  HP  and  Dell, 
was  making  it  hard  to  compete.  Instead, 
RLX  opted  to  focus  on  Control  Tower,  its 
Linux-based  server  management  software. 

Analysts  have  lauded  Control  Tower  for 
providing  advanced  provisioning  and 
workload  management  capabilities  for 
blade  servers,  designed  to  be  clustered  to 
support  applications  as  a  single  pool  of 
compute  resources.  Control  Tower  can  be 
used  to  manage  rack-dense  servers. 

For  HRControl  Tower  fills  a  gap  in  its  man¬ 
agement  offerings  by  providing  native 
Linux-based  control,  says  Rick  Becker,  vice 
president  and  general  manager,  HP  Blade- 
System. 


Short  Takes 


■  Microsoft  last  week  released  a 
management  tool  designed  to  keep 
its  operating  system  running  at  its 
optimum.  The  Microsoft  Windows 
Base  Operating  System 
Management  Pack  for  Microsoft 
Operations  Manager  2005  provides 
detection,  alerting  and  automatic 
response  to  events  and  performance 
issues.  MOM  is  key  to  Microsoft’s 
Dynamic  Systems  Initiative,  a  broad 
plan  to  build  a  management  platform 
for  Windows  that  includes  applica¬ 
tions  and  infrastructure.  MOM  sup¬ 
ports  Windows  2000,  Win  2000 
Advanced  Server,  Win  2000 
Professional  Edition,  Win  2000 
Server,  Win  2000  Service  Pack  4  and 
Win  Server  2003. 


Profile:  RLX 

Location: 

Spring,  Texas 

Founded: 

1999 

Employees: 

36 

Customers: 

200 

Management: 
Primary  product: 

Doug  Erwin,  chairman  and  CEO 

Gontrol  Tower,  server 
management  software  i 

If  Competition: 

IBM  Director,  Dell  OpenManage 

Analysts  say  the  move  is  a  good  one  for 
HR  which  has  focused  on  integrating  man¬ 
agement  tools  across  the  data  center. 

“For  the  last  year ...  HP  had  gotten  into  a 


ing  to  Jamie  McDougall,  Gore’s  vice 
president  of  claims.  The  software  sup¬ 
ports  802.11b  wireless  LANs  (WLAN) 
and  GPRS  cellular  connections. 

The  software  and  the  hosted  service, 
dubbed  Symbility  Mobile  Claims,  were 
created  by  start-up  Symbility,  which  was 
acquired  in  2004  and  is  now  a  division 


reactive  position  with  some  of  their  prod¬ 
uct  development,  and  the  problem  they’re 
running  into  is  they’ve  become  so  reactive 
that  they  were  looking  seriously  at  being 
left  behind,”  says  Charles  King,  principal 
analyst  at  Pund-IT  Research. 

He  says  integrating  Control  Tower  into  its 
BladeSystem  offering  will  help  HP  compete 
with  IBM.  HP  and  IBM  each  control  about 
40%  of  the  blade  market,  though  IBM  holds 
a  slight  lead,  according  to  the  latest  figures 
from  IDC. 

“Certainly  infrastructure  management  is 
such  a  critical  piece  of  blade  offerings  that 
you  need  a  strong  set  of  tools,”  King  says.“It  s 
not  just  a  matter  of  having  a  smaller  foot¬ 
print;  it’s  that  you’ve  got  this  highly  integrat¬ 
ed  environment  that  can  be  managed  in  a 
seamless  way!’ 


of  Automated  Benefits.  Other  applica¬ 
tions  for  field  claims  and  estimates 
require  lots  of  typing  and  lack  an  inte¬ 
grated  wireless  connection  to  server- 
based  storage,  processing  and  analyti¬ 
cal  tools, says  James  Swayze.Symbility’s 
CEO. 


RLX  will  become  part  of  HP’s 
BladeSystem  group.  The  management  soft¬ 
ware  will  be  optimized  for  BladeSystem 
servers  and  is  expected  to  be  available  on 
BladeSystem  and  ProLiant  servers  in  the 
first  half  of  next  year,  Becker  says. 

The  management  technology  will  be  inte¬ 
grated  into  HP’s  Systems  Insight  Manager, 
ProLiant  Essentials  and  OpenView  man¬ 
agement  packages  in  the  second  half  of 
next  year,  Becker  says. 

“Over  time  you’ll  see  us  take  tools  [that] 
Control  Tower  delivers  today  on  Linux,  and 
we’ll  integrate  that  into  tools  we  deliver  on 
Windows  and  Unix,”  Becker  says. The  idea 
is  to  provide  integrated  management 
capabilities  as  end  users  deploy  more 
important  business  applications  on  blade 
servers,  he  says.  ■ 


Symbility  sets  up  secure  access  to 
Symbility.net,  works  with  the  customer 
to  deploy  the  application  software  on 
pen-based  clients  and  trains  users. 
Using  an  ASP  Symbility  charges  cus¬ 
tomers  $20  per  claim,  regardless  of  its 
See  Insurance,  page  33 


Insurance  ad^Krs  use  pen-based  GUI,  wireless 


BY  JOHN  COX 

A  Canadian  insurance  company  is 
deploying  to  its  field  adjusters  a 
new  mobile  application  designed 
to  speed  damage  claims  and  make 
repair  estimates  more  accurate. 

The  application  includes  pen-based 
software  on  a  tablet  PC,  a  local  or  wide- 
area  wireless  network  and  a  hosted  ser¬ 
vice  for  data  storage  and  processing,  all 
through  an  application  service  provider 
(ASP).  Gore  Mutual  Insurance  of  Cam¬ 
bridge,  Ontario,  found  the  combination 
let  adjusters  spend  more  time  meeting 
with  customers  in  the  field,  create  esti¬ 
mates  quickly  and  accurately  without 
having  to  use  a  keyboard,  and  then  up¬ 
load  the  data  to  the  ASP 
Gore  has  not  decided  what  wireless 
services  to  use  for  connectivity,  accord- 


Automating  insuranee  claims 


Q  Adjuster  with  tablet  PC, 
Symbility  application 


Hosted  8ymbility.net 
service  stores  data, 
offers  analytical 
programs 


Contractors  working 
with  insurance  company 


Claims  manager 
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Q  Adjuster  uses  Symbility  forms,  touch  screen  to  create  estimates  on-site. 

B  Wireless  link  uploads  data  to  hosted  server. 

H  Authenticated  contractors  and  in-house  managers  have  immediate  access  to  claim  information. 


Spam,  spyware,  and  virus  protection  at  an  affordable  price 


*  No  per  user  license  fees 

*  Prices  starting  at  $1399 

*  Powerful,  enterprise-class  solution 


Barracuda  Spam  and  Spyware  Firewalls 


Copyright »  2005.  Barracuda  Networks,  Inc.  Ajl  rights  reserved.  Reclaim  Your  Network,  arid  Barracuda  Spam  and  Spyware  Firewalls  are  either  trademarks  or  registered  trademarks  of  Barracuda  Networks.  Inc.  andfor  It  subsidlares  in  ihe  United  Stales  and/or  other  countries. 


POWERFUL  EASY  TO  USE 


AFFORDABLE 


Aggressive  reseller  program  available.  Get  more  info  by  visiting 
www.barracudanetworks.com  or  (888-ANTI-SPAM) 
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MORE  BUSINESS 


With  ProCurve  Networking  by  HP,  you  choose  from  a  comprehensive  set  of  security  solutions— 
each  designed  to  help  protect  your  growing  company.  You  get  exclusive  products  like  ProCurve 
Secure  Router,  Virus  Throttle,  Identity  Driven  Management  and  Access  Controller  Module. 

And  unlike  most  other  providers,  ProCurve  ensures  critical  network  security  at  the  edge  where 
users  connect  as  well  as  at  the  vulnerable  core.  Edge-to-edge  security  means  less  downtime, 
more  uptime.  ProCurve  means  more  security,  more  affordably. 


Find  out  more  about  ProCurve  Networking.  Call  800-975-7684  Ref  Code  54  or 
download  informative  reports  complete  with  case  studies  and  cost-of-ownership 
analysis  at  www.hp.com/learn/procurve4. 
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Securing  the  network  at 
the  edge  keeps  business 
out  of  harm’s  way 


was  (lie  CFO 


It  vi «l!  i  in  n  \J  who  posed  the  “show- 

stopper”  question  at  a  recent  executive  committee  meeting: 
“With  all  the  resources  and  attention  businesses  are  expending 
on  security,  why  are  we  still  besieged  with  continuous  threats 
from  viruses,  worms,  and  hackers?” 

He  wasn’t  overstating  the  problem.  Today  an  estimated 
100,000  viruses,  worms,  and  Trojan  horses  pose  direct  threats 
to  network  computer  users.  The  cost  of  system  downtime 
stemming  from  attacks  can  often  be  measured  in  thousands 
of  dollars  per  minute,  and  the  theft  of  sensitive  data  carries 
tremendous  potential  liability.  So  it’s  no  wonder  security 
remains  a  top  priority  for  business  and  technology  managers 
alike. 

The  truth  is  that  current  methods  and  strategies  for  secur¬ 
ing  corporate  networks  often  fall  short.  Many  companies  use 
virus  signature  scanning  techniques,  but  these  technologies 
alone  are  not  sufficient  since  they  do  not  detect  new  forms  of 
viruses  and  they  depend  on  human  response.  Once  in  the  net¬ 
work,  a  virus  propagates  at  machine  speed,  which  is  orders  of 
magnitude  faster  than  the  “human-speed”  responses  to  them. 


WHAT  USERS  WANT 

Clearly,  businesses  need  a  complete  solution  that  truly  delivers 
security  without  compromise  to  protect  networks  and  the  mission- 
critical  data  that  runs  over  them.  A  checklist  of  the  features  of 
such  a  solution  should  include: 

✓  Simplicity  for  administrators  and  transparency  for  users 
/  Ease  of  deployment  and  flexibility 
/  Security  built-in  and  integrated  with  the  hardware, 
not  bolted  on 

/  Security  at  the  critical  network  edge  where  users  connect 
This  is  exactly  what  users  get,  and  a  lot  more,  with 
Hewlett-Packard’s  ProCurve  Networking  solutions,  engineered  to 
move  vital  network  access  decisions  to  the  network  edge  while 
freeing  essential  network  resources  to  enable  the  high-band¬ 
width  connections  they  are  supposed  to  provide.  By  concentrat- 


ProCurve  Networking 


HP  Innovation 


ing  security  at  the  edge,  HP  ProCurve  further  enables  support 
for  vital  network  convergence  and  burgeoning  mobile  strategies. 
The  result  is  a  solution  without  tradeoffs  between  ease  of  use 
and  performance  versus  capability.  ProCurve  Networking  offers 
security  without  compromise. 

A  key  and  unique  element  of  the  ProCurve  solution  is  virus¬ 
throttling  functionality  built  directly  into  ProCurve  switches.  This 
highly  effective  bulwark  against  viruses  provides  detection  at 
the  network  edge  based  on  traffic  behavior,  not  virus  signature 
analysis.  The  bandwidth  on  the  port  where  the  attack  is 
detected  can  be  throttled  back  or  the  port  traffic  can  be  com¬ 
pletely  contained.  This  functionality  gives  the  IT  staff  the  time 
it  needs  to  first  isolate  and  then  eliminate  viruses  and  worms 
before  they  cause  system-crashing  damage. 

THE  ULTIMATE  IN 
NETWORK  SECURITY 

Unlike  other  virus  detection  technologies,  the  virus-throttling  fea¬ 
ture  does  not  need  preknowledge  of  specific  worms  and  viruses  to 
do  its  job  because  virus  throttling  is  behavior-based.  ProCurve 
switches  with  virus  throttling  can  throttle  or  rate-limit  routed 
traffic,  or  completely  block  traffic  from  a  suspect  client. 

Not  all  virus  attacks  come  from  external  sources  outside  of 
a  network.  It  is  increasingly  important  to  protect  access  to  the 
internal  network  behind  the  firewall  to  prevent  virus  attacks 
and  threats  to  critical  systems.  Using  ProCurve  solutions,  users 
effectively  move  security  to  the  network  edge,  where  trouble 
can  be  resolved  before  any  damage  is  done  to  business-critical 
data.  ProCurve’s  value  proposition  delivers  intelligent  security 
with  ease  of  use,  without  sacrificing  performance. 

The  bottom  line  is  that  with  its  many  unique,  powerful,  and 
adaptable  features,  HP  ProCurve  Networking  delivers  on  the 
core  and  essential  value  propositions  of  high  network  availabili¬ 
ty,  efficiency,  security,  ease  of  use,  and  open-standards-based 
interoperability.  For  more  information,  go  to 
www.hp.com/learn/procurve. 
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IBM,  start-up  become  grid  partners 


«Th  is  sort  of  relationship  is 
exactly  why  we  created  Univa. 
IBM  is  very  strategic  for  us.W 


Steve  Tuecke,  founder,  Univa 


BY  CHINA  MARTENS, 

IDG  NEWS  SERVICE 

BOSTON  —  IBM  announced  last 
week  at  the  GridWorld  show  in 
Boston  that  it  has  licensed  com¬ 
mercial  releases  of  Globus  mid¬ 
dleware  from  Univa,  a  start-up 
focusing  on  open  source  grid  soft¬ 
ware. 

IBM  says  it  will  also  use  Univa’s 
software  on  its  grid  projects. 

“The  important  thing  from  our 
perspective  for  grid  computing 


really  to  be  successful  is  for  it 
to  be  implemented  based  on 
open  standards,”  says  Ken 
King,  vice  president  of  grid 
computing  at  IBM. 

Univa’s  three  founders  — 
Steve  Tuecke,  Ian  Foster  and 
Carl  Kesselman  —  created 
the  open  source  Globus  Pro¬ 
ject  in  1995  and  began  develop¬ 
ment  of  the  Globus  Toolkit.  They 
later  renamed  the  project  the 
Globus  Alliance.  The  grid  tool  kit 


includes  software  services  and 
libraries  for  resource  monitoring, 
discovery  and  management,  along 
with  security  and  file  manage¬ 


ment.  Last  December,  Tuecke  and 
the  other  founders  formally 
launched  Univa  as  a  software  and 
services  company  to  offer  com¬ 
mercial  implementations  of 
Globus. 

Univa  plans  to  deliver  its  first 
commercial  product,  Univa  Glo¬ 
bus  Enterprise,  by  year-end. 

The  initial  version  of  the  soft¬ 
ware  will  be  well  supported  to  run 
across  IBM’s  eServer  hardware  on 
both  Linux  and  AIX,  IBM’s  flavor  of 
Unix,  Tuecke  says,  along  with 
other  vendors’  platforms. 

“This  sort  of  relationship  is  exact¬ 
ly  why  we  created  Univa,”  he  says. 
“IBM  is  very  strategic  for  us.” 

IBM’s  King  drew  parallels  with 
the  development  of  Linux,  as  the 
Globus  Toolkit  plays  the  part  of  the 
open  source  operating  system, 
while  Univa  takes  on  the  role  of 
Linux  distribution  companies  Red 
Hat  or  Novell’s  SuSE  in  creating 
commercial  products. 

The  agreement  between  IBM 
and  Univa  is  non-exclusive,  and 
King  says  he  hopes  other  compa¬ 
nies,  particularly  application  ven¬ 
dors,  will  strike  up  similar  arrange¬ 


ments  with  the  start-up. 
Tuecke  won’t  discuss  the  sta¬ 
tus  of  other  pending  deals, 
particularly  one  that  has 
been  long  rumored  with  SAP 
IBM  has  been  a  longtime 
backer  of  Globus,  previously 
developing  its  own  imple¬ 
mentation  of  the  open  source 
Globus  Toolkit,  King  says.  Once 
Univa’s  product  ships,  IBM  will 
move  its  in-house  and  customer 
developments  based  on  Version  3 
of  the  open  source  software  to 
Univa’s  commercial  implementa¬ 
tion,  he  says.  Univa  Globus  Ent¬ 
erprise  will  be  based  on  the  fourth 
iteration  of  the  Globus  Toolkit. 

“We  will  continue  to  support  cus¬ 
tomers  using  our  [IBM]  imple¬ 
mentation,”  King  says.  IBM  will  also 
continue  to  contribute  technology 
back  to  the  ongoing  open  source 
development  of  the  Globus 
Toolkit,  he  adds. 

In  January  IBM, Sun,  HP  and  Intel 
teamed  to  form  the  Globus 
Consortium,  an  effort  to  invest 
money  and  technical  know-how 
in  improving  the  Globus  Toolkit, 
initially  to  fix  bugs. 

Using  the  Linux  analogy  again, 
Tuecke  likens  the  Globus  Con¬ 
sortium  and  its  functions  to  those 
carried  out  by  the  Open  Source 
Development  Labs  in  the  Linux 
arena.  The  labs  operate  as  a  non¬ 
profit  consortium  that  promotes 
use  of  the  open  source  operating 
system.  ■ 


First  Power5+  servers  released 


BY  CHINA  MARTENS,  IDG  NEWS  SERVICE 

IBM  last  week  released  the  first  servers  based  on 
its  new  64-bit  Power5+  processors.  The  machines 
are  aimed  at  small  to  midsize  businesses  and 
include  several  new  products,  notably  a  quadcore 
server,  together  with  virtualization  and  systems 
management  software. 

The  Fbwer5+  chips  come  in  clock  speeds  of  either 
1.5GHz  or  1.9GHz  with  a  maximum  of  72M  bytes  of 
onboard  cache  memory  according  to  Jeff  Howard, 
program  director  for  IBM’s  p5  product  marketing. 

“We’re  heavily  targeting  SMBs,”  Howard  says.“More 
than  58%  of  the  Unix  opportunity  is  in  the  SMB 
space.”  IBM  typically  defines  SMBs  as  companies 
with  1 ,000  or  fewer  employees. 

The  new  System  p5  550  Q  is  powered  by  a  1.5GHz 
quadcore  Fbwer5+  chip,  enabling  the  hardware  to 
function  as  an  eight-way  machine,  he  says.  The 
System  p5  505  is  IBM’s  first  rack  server  for  the  Fbwer5 
or  Fbwer5+  architecture  in  a  1U  form  factor. 

“We’re  starting  with  p5  and  will  extend  [the 
Fbwer5+  chip]  to  the  midrange  and  high-end  in 


2006,”  Howard  says. 

IBM  also  upgraded  two  existing  server  models  to 
feature  the  new  chip  —  the  two-way  1.9GHz  System 
p5  520  and  the  four-way  1 ,9GHz  System  p5  550. 

The  servers  are  available  with  IBM’s  own  flavor  of 
Unix,  AIX  5L,or  in  what  Big  Blue  calls  the  OpenFbwer 
edition  with  the  Linux  operating  system  from  either 
RedHat  or  Novell.  The  machines  are  part  of  IBM’s 
Express  line  of  hardware  targeting  both  SMBs  and 
start-ups. 

IBM  is  dropping  the  eServer  prefix  from  its  p5 
product  line  and  replacing  it  with  “System,”  a 
rebranding  move  begun  in  July  when  the  company 
introduced  its  latest  mainframe  as  the  System  z9. 

Big  Blue  expects  all  the  Fbwer5+-based  machines 
to  ship  starting  Oct.  14. The  System  p5  505  has  a  start¬ 
ing  price  of  $3, 750,  while  IBM  is  still  completing  pric¬ 
ing  for  the  other  servers. 

IBM  announced  two  new  software  products  target¬ 
ed  at  SMBs.  Integrated  Virtualization  Manager  pro¬ 
vides  a  browser-based  interface  for  the  company’s 
virtualization  micropartitioning  capabilities.  ■ 
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Insurance 

continued  from  page  31 

size  or  how  long  it  takes  to  settle.  If  out¬ 
side  contractors  or  independent 
adjusters  “touch”  the  claim,  they  pay  a 
one-time  $5  fee. 

Symbility  began  offering  its  software 
and  service  in  the  U.S.  this  summer. 

Gore’s  adjusters  had  conducted  esti¬ 
mates  partly  by  using  a  program  running 
on  laptops  and  partly  by  jotting  notes 
and  figures  in  longhand.  “The  [user] 
interface  was  not  as  good  as  Symbilityf 
McDougall  says.  “What  I’d  like  to  do  is 
use  my  time  in  the  field  effectively  by 
entering  data  on-site  and  entering  it 
once." 


Gore  piloted  Symbility  Mobile  Claims, 
starting  in  April  with  four  adjusters.  The 
software  was  loaded  on  Toshiba  Tablet 
PCs,  which  incorporated  both  802.11b 
and  Bluetooth  wireless  adapters. 

The  critical  issue  was  whether  the 
application’s  interface  made  it  easy  for 
the  adjusters  to  use  in  the  field,  without 
having  to  type  in  text  and  data.  “Some 
tools  out  there  are  not  built  with  the 
field  adjuster  in  mind,”  McDougall  says. 

Working  with  the  Tablet  PC  pen, 
adjusters  can  sketch  a  room  or  building, 
then  drag-and-drop  on  the  screen  data 
items,  such  as  hardwood  or  carpeted 
floors  and  drywall  or  oak  paneling. 
Tapping  and  selecting  through  various 
drop-down  menus,  adjusters  create  a 


detailed  picture  of  the  property  and  the 
damage.  Using  up-to-date  cost  databas¬ 
es,  the  software  generates  and  breaks 
out  estimated  repair  costs. 

So  far,  the  adjusters  have  been  using 
conventional  tape  measures  in  their 
work.  But  Symbility’s  software  offers  a 
wireless  Bluetooth  interface  to  Leica 
Geosystems’  Disto,  a  handheld  laser¬ 
measuring  device.  Using  the  interface, 
Symbility  Mobile  Claims  can  collect  dis¬ 
tances  from  Disto  and  display  them  with 
the  adjuster’s  diagram. 

For  the  pilot,  uploading  the  data  to 
Symbility.net  was  done  over  Gore’s  cor¬ 
porate  WLAN.  Once  Gore  sets  up  a  cel¬ 
lular  data  service,  all  this  data  can  be 
uploaded  at  once,  leaving  the  adjuster 


free  to  drive  to  the  next  job  without  hav¬ 
ing  to  re-enter  data  at  an  office. 

The  hosted  Web  service  stores  the  data 
collected  by  the  adjuster  along  with  pol¬ 
icy  numbers,  claim  number  and  relevant 
deductible  amounts.  The  hosted  service 
also  can  notify  Gore’s  contractors  and 
subcontractors,  as  well  as  the  field  and 
office  staff,  about  new  data  and  the  sta¬ 
tus  of  the  claim  via  e-mail,  voice  calls  or 
text  messages  to  cell  phones.  Finally, 
Symbility.net  provides  a  complete  audit 
trail  of  the  claim  and  who  accesses  it. 

Gore’s  McDougall  says  the  centralized 
storage  of  this  data  will  make  it  possible 
to  create  and  run  analytical  programs  to 
identify  cost  trends  and  help  adjusters 
and  contractors  fine-tune  estimates.  ■ 
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SPECIAL  FOCUS 


EXPANDING  SERVER  OPTIONS 


A  whole  new  look  for  x86  systems 


Pump  up  the  volume 

Technology  advances  are  making  volume  x86  servers  more  powerful, 
A  sampling  of  recent  enhancements: 

•  April  2003:  AMD  unveils  the  32-/64-bit  Optero  ocessor. 

•  June  2004:  Intel  adds  64-bit  support  to  Xeon. 

•  April  2005:  AMD  announces  dual-core  Opteron. 

•  October  2005:  Intel  debuts  dual-core  Xeon  processors. 


The  new  dual-core  Opteron-based  Sun  Fire  X4200  is  an  example  of  the  higher 
processing  power,  and  improved  manageability  now  available  in  x86  systems. 


BY  JENNIFER  MEARS 

ith  its  lease  about  up  on  its 
midrange  Sun  Fire  V880,  the 
Applied  Research  Laboratory  at 
The  Pennsylvania  State  Univer¬ 
sity  was  looking  to  cut  costs  and  boost 
efficiencies.  Initially  its  plan  was  straight¬ 
forward:  move  off  the  expensive  Sun  box 
and  onto  lower-priced  Xeon-based  Dell 
servers  running  Linux. 

Today, however, the  research  lab  is  taking  a 
second  look  at  Sun  and  its  new  Opteron- 
based  Galaxy  servers.  The  servers,  intro¬ 
duced  last  month,  are  the  first  x86  boxes 
designed  by  Sun  engineers.Sun  co-founder 
Andy  Bechtolsheim  is  leading  the  design 
team  building  the  servers  focused  on  high 
performance,  better  cooling  and  advanced 
manageability 

The  Galaxy  systems  are  the  latest  exam¬ 
ple  of  beefed-up  x86  servers,  giving  users 
more  choice  when  it  comes  to  designing 
their  data  centers.  The  move  from  expen¬ 
sive,  proprietary  systems  to  less-expensive, 
standards-based  servers  is  nothing  new.  But 
the  trend  for  the  last  few  years  has  been  to 
cluster  these  low-end  servers  to  provide 
the  processing  power  needed  to  migrate 
important  business  applications  from  high- 
end  systems.  Today  the  x86  servers  them¬ 
selves  are  providing  more  processing 
power,  flexibility  and  manageability 

Enhanced  virtualization 

With  features  such  as 
64-bit  support,  enhanced 
virtualization  capabili¬ 
ties  and  dual-core  de¬ 
signs  available  from  Intel 
and  AMD,  systems  ven¬ 
dors  are  rolling  out 
more-advanced  x86- 
based  servers. 

IBM  invested  three  years 
and  $100  million  into 
developing  X3,  a  Xeon-based  chipset  that 
brings  mainframe-type  reliability  and  virtu¬ 
alization  capabilities  to  standards-based 
systems.  It  began  shipping  servers  based  on 
the  chipset  earlier  this  year. 

“Over  the  next  year,  I  believe  we’ll  start  to 
see  more  boxes  that  have  the  kind  of  heavy- 
duty  engineering,  in  terms  of  both  box 
structure  and  packaging  and  power  sup¬ 
plies  and  cooling,  that  people  have  been 
building  around  [Intel’s  64-bit]  Itanium 
starting  to  show  up  around  Xeon  and 
Opteron,”  says  Nathan  Brookwood,  princi¬ 
pal  analyst  at  Insight  64. 


Already  change  is  starting.  A  report  issued 
by  IDC  in  April,  estimated  that  sales  of  vol¬ 
ume  servers  —  those  priced  below  $25,000 
—  accounted  for  nearly  half  of  the  total 
worldwide  server  spending  in  2004,  up  from 
43%  in  2003. 

Miyor  drivers 

“The  higher  processing  power  and  im¬ 
proved  management  capabilities  and  inter¬ 
faces  that  compare  with  features  formerly 
only  available  on  higher-end  systems  are 


major  drivers  for  growth  across  this  much 
more  modestly  priced  range  of  servers,”  the 
report  says. 

While  IT  buyers  purchased  volume  sys¬ 
tems  as  a  result  of  pressure  to  cut  costs  in 
2003,  the  motivation  in  2004  was  more 
about  stepped-up  performance  and  stream¬ 
lined  management,  the  report  says. 

“It’s  no  longer  just  the  cost  of  these  servers 
that  is  driving  adoption.  It’s  also  the  higher 
level  of  processing  power  and  ease  of  man¬ 
ageability’ the  report  says. 

Users  want  to  consolidate  an  exploding 
number  of  x86  systems  but  don’t  want  to 


move  to  higher-end  servers,  which  may 
require  them  to  change  operating  systems 
or  modify  applications.  As  a  result,  they’re 
looking  for  the  computing  muscle  and 
manageability  once  limited  to  more  expen¬ 
sive  high-end  machines,  analysts  say 
In  Penn  State’s  case,  the  Applied 
Research  Laboratory  was  set  to  move  its 
Oracle  database  applications  from  scal¬ 
able  processor  architecture  (SPARC)- 
based  servers  to  Intel-based  Dell  servers 
running  Linux.  But  the  Galaxy  servers 
provided  an  interesting 
alternative,  especially 
because  they  would 
allow  the  research  lab  to 
continue  running  its 
database  on  Solaris. 

“The  Galaxy  systems 
will  allow  us  to  maintain 
our  investment  in  Solaris 
expertise,  while  also 
moving  to  the  grid  para¬ 
digm,”  says  John 
Groenveld,  associated  research  engineer 
at  the  university  in  State  College,  Pa.  “Our 
purchase  will  depend  on  whether  they 
provide  significantly  better  responsiveness 
for  our  Oracle  transactions  without  huge 
new  power  and  cooling  requirements.” 

Cool  speed 

Power  and  cooling  are  on  the  minds  of 
Intel  and  AMD.  Both  have  moved  to  the 
dual-core  design  that  IBM,  Sun  and  HP 
have  been  using  to  pump  up  processing 
power,  while  reining  in  power  and  heat, 
for  their  RISC  chips.  IBM  rolled  out  its 


first  dual-core  Power  processor  in  2001, 
and  Sun  and  HP  followed  suit  with  dual¬ 
core  RISC  chips  last  year. 

In  the  x86  market,  AMD,  which  was  the 
first  to  add  64-bit  support  to  the  32-bit  plat¬ 
form,  introduced  its  dual-core  Opteron  in 
the  spring.  Intel  is  expected  to  formally 
launch  its  dual-core  Xeon  today.  Putting 
two  processing  engines,  or  cores,  on  a  sin¬ 
gle  piece  of  silicon  enables  chips  to  work 
harder,  while  consuming  less  power.  In¬ 
stead  of  ramping  up  clock  speed,  as  chip 
makers  have  typically  done,  two  lower- 
power  cores  that  can  share  tasks  are 
placed  on  a  single  chip. 

Today’s  x86  servers  are  offering  more 
than  faster  processing;  they  can  support 
more  memory  associated  with  64-bit 
workloads,  as  well  as  more-advanced  vir¬ 
tualization  capabilities,  thanks  to  soft¬ 
ware  from  Microsoft,  SWsoft  and 
VMware.  In  addition,  Intel  and  AMD  are 
building  virtualization  features  into  their 
silicon. 

“X86  systems  are  far  more  capable  than 
they  used  to  be,”  says  Charles  King,  princi¬ 
pal  analyst  at  Pund-IT  Research. 

But  King  notes  that  while  x86  systems 
are  growing  up,  IBM  and  Sun  are  adjusting 
their  high-end  RISC  chips,  introducing 
lower-priced  Power  and  UltraSPARC 
servers.  IBM,  for  instance,  is  targeting  small 
and  midsize  businesses  (SMB)  with  low- 
priced  servers  based  on  its  new  Power5+ 
processor  (see  story  on  page  33). 

“Where  x86  systems  may  have  the  ben¬ 
efit  is  that  SMBs  are  comfortable  with  the 
applications  on  that  platform,”  King  says. 

Still,  the  move  to  run  64-bit  workloads 
on  x86  servers  is  happening  slowly,  in 
large  part  because  of  a  lack  of  64-bit 
application  support. 

Unlike  with  Itanium,  which  uses  a  com¬ 
pletely  different  instruction  set,  there  is 
no  requirement  that  users  employ  the 
64-bit  extensions  available  on  hybrid  x86 
chips. 

“The  fact  that  Itanium  didn’t  take  off  as 
expected  is  really  because  it  is  only  in 
certain  types  of  applications  [such  as 
databases]  that  there  was  a  driving  need 
to  go  beyond  32-bit  to  the  larger  memo¬ 
ry  you  see  in  RISC  servers  today”  says 
Gordon  Haff,  an  analyst  at  llluminata. 
“But  64-bit  extensions  [to  x86]  are  here, 
and  there  is  no  penalty  to  having  a  serv¬ 
er  that  is  capable  of  supporting  64-bit, 
whether  you  need  it  or  not.  That’s  the 
nice  thing  about  the  x64  approach.”  ■ 


“Over  the  next  year,  I  believe  we’ll  start  to 
see  more  boxes  that  have  the  kind  of 
heavy-duty  engineering  . . .  that  people 
have  been  building  around  [Intel’s  64-bit] 
Itanium  starting  to  show  up  around  Xeon 
and  Opteron.” 

Nathan  Brookwood,  principal  analyst  at  Insight  64 


For  these  and  other  third-party  findings,  go  to 
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RAYOVAC  CHOSE  WINDOWS  SERVER 
SYSTEM  AND  EXPECTS  TO  SAVE  NEARLY 
ONE  MILLION  DOLLARS. 


"By  choosing  Windows  Server™  over  Linux  for  our 
new  SAP  APO  solution,  we'll  save  an  estimated  one 
million  dollars  in  software,  staffing,  and  support  costs 
over  the  first  four  years.  We  needed  performance, 
security  enhancements,  and  reliability  at  a  reasonable 
price,  and  Linux  would  have  presented  additional 
risks  in  all  of  those  areas.  It  may  be  the  new  thing 
from  a  technical  perspective,  but  Linux  doesn't  cut 
it  from  a  business  perspective — I  need  a  proven  IT 
environment  that  I'm  sure  we  can  support." 

-Rick  Dempsey,  Chief  Information  0/gW)|A|f 
Officer,  Rayovac 
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□  CAN  IT  HELP  CONTROL  COSTS  AS  WE  GROW 

□  CAN  WE  DEPLOY  IT  QUICKLY 

□  HOW  RELIABLE  IS  IT 

□  ARE  THERE  HIDDEN  COSTS 

□  IS  IT  LINUX 

□  OR  WINDOWS  SERVER 


GET  YOUR  FREE  COPY  OF  “MOBILE  WORKFORCE  FOR  DUMMIES”  AT  AVAYA.COM/DUMMIES 
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COMMUNICATIONS 
AT  THE  HEART  OF  BUSINESS 


AVAYA  IP  TELEPHONY  GIVES  YOU 
SINGLE-DEVICE  MOBILITY,  LIKE 

HONE. 
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APPLICATION  SERVICES 

■  CRM  B  MESSAGING/COLLABORATION  ■  WEB  SERVICES  HERR  H  E-COM  11  NETWORK  AND  SYSTEMS  MANAGEMENT 


Short  Takes 


■  Teradata,  a  data  warehouse  and 
analytic  software  maker,  recently 
unveiled  a  new  version  of  its  market¬ 
ing  applications  suite.  Teradata 
Relationship  Manager  Version  6  is 
aimed  at  integrating  analytical  and 
operational  CRM  data  so  companies 
can  deliver  more  timely,  relevant 
offers  to  customers  and  improve 
campaign  response  rates.  The  new 
version  has  100  more  features  than 
does  its  predecessor, Teradata  CRM, 
the  company  says.  Among  the  addi¬ 
tions  is  a  role-based  user  interface 
that  tailors  campaign  metrics  and 
workflow  processes  to  different 
users  on  the  marketing  team. 
Relationship  Manager  Version  6  will 
be  available  in  the  fourth  quarter. 

■  Business  intelligence  software 
vendor  Business  Objects  SA  plans 
to  buy  information  visualization  soft¬ 
ware  developer  Infommersion  for 
about  $40  million  in  cash.  Infom¬ 
mersion  is  a  privately  held  company 
that  sells  Xcelsius,  an  application 
that  presents  business  intelligence 
data  from  back-end  systems  as 
interactive  charts,  graphs  and  dash¬ 
boards,  and  can  package  them  in 
formats  including  Adobe's  PDF  and 
Microsoft's  PowerPoint  presentation 
tool.  Business  Objects  plans  to  use 
Infommersion’s  technology  to 
enhance  the  way  its  software  pre¬ 
sents  data.  The  companies  expect  to 
close  the  deal  in  the  fourth  quarter. 

■  Identity  audit  and  control  vendor 
Trusted  Network  Technologies 

said  last  week  it  would  offer  free 
identity  audit  services  for  qualified 
universities  and  colleges  as  part  of 
its  Identity  Nowl  for  Higher 
Education  program.  The  company 
says  the  two-week  network  audit 
would  reveal  which  students,  profes¬ 
sors,  teachers,  administrators  and 
researchers  are  interacting  with 
resources  that  contain  personnel 
files,  academic  records,  financial 
data  and  other  sensitive  information. 
Schools  interested  ican  apply  at 
www.trustednetworktech.com/ 
IDNow. 


Nortel,  Witness  aid  call  centers 


BY  ANN  BEDNARZ 

The  desire  to  implement  flexible  staffing 
options  and  optimize  employee  perfor¬ 
mance  is  driving  many  of  today’s  call  cen¬ 
ter-related  IT  investments. 

Eveiy  Fortune  500  company  has  at  least 
one  call  center,  and  each  employs  an  aver¬ 
age  of  4,500  agents  across  their  sites, 
according  to  McKinsey  &  Co.  Companies 
that  maximize  the  usefulness  of  their  call 
centers  —  by  acting  strategically  and  mak¬ 
ing  judicious  technology  investments,  for 
example  —  can  increase  revenue  from  call 
centers  by  20%  to  35%  and  cut  costs  by  15% 
to  25%,  the  research  firm  estimates. 

To  help  companies  improve  their  call 
center  operations,  Nortel  and  Witness 
Systems  recently  added  to  their  respective 
call  center  product  portfolios.  Nortel’s  latest 
software  initiative  is  designed  to  let  compa¬ 
nies  more  easily  tap  experts  outside  the  call 
center  to  handle  customer  inquiries  on  the 
fly  Witness  Systems’  new  suite  combines 
workforce  management,  quality  monitor¬ 
ing,  e-learning  and  performance  manage¬ 
ment  features  in  a  single,  unified  package. 

With  Nortel’s  Expert  Anywhere  software 
bundle,  companies  can  direct  customer 
calls  to  the  most  appropriate  employee, 
whether  that  employee  works  in  a  call  cen¬ 
ter,  branch  office,  retail  store  or  home 


Big  business 

Companies  with  call  centers 
spend  more  than 

$300  billion 

worldwide  according  to  McKinsey  &  Co. 
The  annual  operating  budget  of  a  200- 
agent  center  is  more  than  $10  million. 


office.  Businesses  can  add  company 
experts  to  their  pool  of  customer  service 
agents  during  peak  times  or  to  handle  spe¬ 
cific  high-level  questions,  for  example,  with¬ 
out  having  to  hire  more  call  center  agents 
or  expand  their  call  center  facilities. 

“It’s  about  being  able  to  tap  into  certain 
individuals  of  high  skill  sets  without  mak¬ 
ing  that  person  physically  sit  in  a  contact 
center?’  says  Roxann  Swanson,  vice  presi¬ 
dent  and  general  manager  of  multimedia 
applications  at  Nortel.  The  foundation  of 
Expert  Anywhere  is  Nortel  Application 
Center,  a  SIP-based  platform  for  IP-based 
call  centers  that  combines  speech  recogni¬ 
tion,  unified  messaging  and  collaboration 
functions  with  common  management  and 
reporting  tools. 

In  the  past,  it’s  been  tough  to  get  visibil¬ 


ity  to  certain  kinds  of  experts  outside  the 
contact  center  and  immediately  deter¬ 
mine  their  availability  to  assist  with  a  cus¬ 
tomer  call,  Swanson  says.  With  Expert 
Anywhere’s  presence  and  routing  capa¬ 
bilities,  an  agent  can  find  someone  who 
is  available  and  appropriately  skilled  to 
pass  a  call  to,  regardless  of  their  location. 
“You  can  make  that  connection  immedi¬ 
ate^’  she  says. 

For  its  part,  Witness  Systems  unveiled  a 
product  suite  called  Impact  360,  which  is 
expected  to  be  generally  available  by  year- 
end.  The  suite  integrates  Witness  Systems’ 
existing  quality-monitoring  applications 
with  workforce  management  software  the 
company  gained  in  its  $75  million  acquisi¬ 
tion  of  Blue  Pumpkin,  which  was  finalized 
in  January 

By  combining  the  two  feature  sets, Witness 
Systems  says  it  can  help  companies  link 
previously  disparate  systems  and  streamline 
key  management  functions.  For  example, 
the  Impact  360  software  could  automatical¬ 
ly  send  training  requests  to  the  scheduler 
and  assign  learning  sessions  for  an  agent  if 
the  call  recording  and  evaluation  tools 
identify  a  problem  with  the  agent’s  cus¬ 
tomer  interactions. 

One-stopshopping  for  workforce  optimiza* 

See  Gall  center,  page  40 


Microsoft  Office  gets  PDF  support 


BY  ELIZABETH  MONTALBANO, 

IDG  NEWS  SERVICE 

Microsoft  is  adding  native  support  for  PDF 
in  the  next  version  of  its  office  productivity 
suite,  code-named  Office  12,  which  is 
expected  to  be  available  next  year. 

Office  12  will  let  users  save  files  in  any 
Microsoft  Office  program,  such  as  Excel, 
PowerPoint  or  Word,  as  a  PDF  file  by  using 
the  “save  as”  command,  according  to 
Microsoft.  Users  can  redistribute  the  cre¬ 
ated  PDF  files  electronically  as  read-only 
files,  but  they  cannot  be  viewed  from 
within  Office  itself.  A  PDF  file  viewer  is 
still  required  to  view  Office-created  PDF 
files  on  screen. 

Microsoft  rival  Adobe  created  PDF  as  a 
way  for  documents  to  be  shared  easily 
across  applications  that  support  disparate 
file  formats,  and  it  is  widely  used  as  a  stan¬ 
dard  way  for  Internet  users  to  send  and 


receive  documents. 

Microsoft  announced  in  June  that  XML 
would  be  the  default  file  format  in  Office 
12,  with  the  reasoning  that  XML-based  doc¬ 
uments  would  be  easier  to  archive  and 
share  because  XML  is  an  open  standard. 
Microsoft  plans  to  use  the  Office  2003  Open 
XML  schemas  as  the  default  for  saving  and 
creating  documents,  spreadsheets  and  pre¬ 
sentations  in  Office  12. 

Microsoft  also  is  developing  another  file 
format,  Metro,  which  lets  users  view  Office 
files  without  using  Office  applications. 
Some  see  the  technology  as  Microsoft’s 
own  version  of  PDF  However,  Microsoft 
plans  to  release  Metro  as  part  of  the  next 
client  version  of  Windows,  Windows  Vista, 
so  it’s  not  likely  the  technology  will  be 
used  on  other  operating  systems  the  way 
PDF  is. 

Open  file  formats  have  garnered  attention 


recently  when  the  commonwealth  of 
Massachusetts  announced  a  plan  to 
migrate  to  open  file  formats  for  all  docu¬ 
ments  generated  by  its  government  agen- 
cies.The  state  is  going  forward  with  plans  to 
support  the  newly  ratified  Open  Document 
Format  for  Office  Applications,  or  Open- 
Document,  as  the  standard  for  its  office 
documents. 

Developed  within  the  standards  body 
Organization  for  the  Advancement  of 
Structured  Information  Standards,  Open- 
Document  is  an  XML-based  file  format  that 
covers  the  features  required  by  text, spread¬ 
sheets,  charts  and  graphical  documents. 

Suites  that  support  OpenDocument  in¬ 
clude  OpenOffice,  StarOffice,  KOffice  and 
IBM  Workplace.  Microsoft  Office  does  not 
support  the  file  format. 

A  beta  of  Office  12  is  expected  to  be  avail¬ 
able  before  year-end.  B 


38  •  www.networkworld.com  •  10.10,05 


CA  touts  Concord,  Aprisma  support 


BY  DENISE  DUB1E 

BOSTON  —  Computer  Asso¬ 
ciates  last  week  sent  its  big  guns 
to  a  local  user  event  in  an  effort  to 
show  support  for  its  newest  cus¬ 
tomers  and  detail  CAs  commit¬ 
ment  to  product  integration  and 
development. 

About  400  Concord  Commun¬ 
ications  and  Aprisma  Manage¬ 
ment  Technologies  customers  got 
to  hear  firsthand  from  CA 
President  and  CEO  John  Swain- 
son  and  CTO  Alan  Nugent,  who 
delivered  separate  keynote 
speeches,  how  the  management 
heavyweight  plans  to  bring  the 
technology  it  acquired  this  year 
into  its  Unicenter  software  suite. 

In  June,  CA  completed  its 
acquisition  of  network  perfor¬ 
mance  management  vendor 
Concord  and  its  eHealth  Suite. 
In  the  process,  CA  also  picked 
up  Aprisma,  which  Concord  ac¬ 
quired  in  February  and  the  for¬ 
mer  Cabletron  company’s  Spec¬ 


trum  network  fault  manage¬ 
ment  and  root-cause  analysis 
software. 

CA,  one  of  the  top  four  manage¬ 
ment  software  makers  in  terms  of 
market  share  alongside  BMC 
Software,  HP  and  IBM,  says  its 
Unicenter  systems,  mainframe, 
database  and  application  tech¬ 
nologies  will  benefit  from  the  net¬ 
work  expertise  Concord  and 
Aprisma  bring  to  the  table. 

“With  Unicenter  NSM,  [Network 
and  Systems  Management] ,  the  N 
should  have  been  lowercase 
because  of  our  weaknesses  in  the 
network,”  Nugent  says. 

CA  shared  with  attendees  a 
road  map  of  its  Unicenter  rll 
products,  which  it  will  further 
detail  at  its  annual  CA  World  con¬ 
ference  in  Las  Vegas  next  month. 
The  company  is  expected  to 
announce  technology  to  man¬ 
age  virtualized  networks  in  new 
releases,  for  example.  But  to  start, 
CA  last  week  said  eHealth  and 


Spectrum  are  being  developed 
to  have  the  same  look  and  feel, 
to  employ  similar  workflows  and 
to  support  the  same  platforms 
and  vendor  gear  across  the  two 
products.That  integration  will  be 


carried  over  to  Unicenter, as  well, 
CA  says. 

“We  are  developing  integra¬ 
tions  while  also  keeping  the 
products  modular  enough  to 
help  customers  purchase  tools 
separately  but  use  them  togeth¬ 


er’’  says  Tom  Hayes,  director  of 
product  marketing  at  CA.“We  will 
determine  what  we  keep  from 
each  product’s  technology  stack 
based  on  performance  and  cus¬ 
tomer  input.” 


CA  says  Concord  and  Aprisma 
shared  about  100  customers, 
which  can  immediately  take  ad¬ 
vantage  of  the  integration  CA 
developed  between  the  two 
technologies.  A  software  module 
will  be  built  into  eHealth  and 


Spectrum  applications  going  for¬ 
ward  and  is  being  tested  with 
beta  customers.  In  the  future  the 
two  products  and  CA’s  own 
Unicenter  will  be  reshaped  to 
use  the  same  database,  polling 
and  discovery  mechanisms,  for 
example,  in  the  core  underlying 
technology 

According  to  Nugent,  CA  invests 
about  $2  billion  in  its  Enterprise 
Systems  Management  and  Bus¬ 
iness  Service  Optimization  divi¬ 
sions,  which  oversee  various 
Unicenter  products  and  are 
among  five  business  units 
announced  earlier  this  year 
under  the  new  direction  of 
Swainson.  Nugent  says  CA  in¬ 
tends  to  show  Concord  and 
Aprisma  customers  that  CAs  bad 
reputation  for  customer  service  is 
a  thing  of  the  past. 

“We  have  to  walk  the  talk.  We 
will  be  seeing  customers,  hearing 
their  concerns  and  answering 
their  questions,”  Nugent  says.  ■ 


** We  have  to  walk  the 
talk.  We  will  be  seeing 
customers,  hearing  their 
concerns  and  answering 
their  questions.** 


Alan  Nugent,  CTO,  Computer  Associates 


Vendors  upgrade  operations  automation  gear 


BY  DENISE  DUBIE 

IT  automation  vendors  last  week 
upgraded  their  software  platforms  to  help 
customers  process  jobs  and  manage 
workloads  more  efficiently  across  hetero¬ 
geneous  networks. 

The  common  theme  in  upgrades  for  the 
products  —  OpTier’s  CoreFirst  and 
Optinuity’s  C20  —  is  more  detailed  policy 
and  process  definition,  which  the  vendors 
say  will  help  their  customers  better  auto¬ 
mate  manual  work  such  as  running  batch 
jobs  across  mainframe  and  distributed 
environments. 

Industry  watchers  say  these  types  of  oper¬ 
ations  automation  products  can  help  IT 
managers  improve  application  and  service 
performance,  and  ensure  service  levels  are 
met  by  monitoring  the  supporting  systems. 

OpTier’s  CoreFirst  1.4  requires  IT  man¬ 
agers  to  install  a  central  data  repository  on 
a  dedicated  server  and  to  distribute  agents 
on  managed  Web,  database  and  applica¬ 
tion  servers.  Customers  must  set  the  poli¬ 
cies  they  want  the  software ‘to  use  via  a 
Web-based  interface,  which  also  serves  as  a 
management  interface  and  reporting  tool. 
Once  deployed,  CoreFirst  discovers  how 
applications  traverse  the  network  and  use 
the  managed  devices,  and  the  agents  mon¬ 
itor  the  transaction  workloads  on  the 
servers. 

For  example,  an  IT  manager  would  prior¬ 


itize  the  top  five  applications  for  the  com¬ 
pany  The  agents  would  monitor  the  work¬ 
load  on  the  servers  used  by  those  applica¬ 
tions,  and  when  a  transaction  associated 
with  the  prioritized  applications  competed 
for  compute  resources  with  another  trans¬ 
action,  the  CoreFirst  agents  would  allocate 
resources  to  the  higher  priority  applica¬ 
tions  ahead  of  other  transactions. 

In  this  release,  OpTier  also  added  sup¬ 
port  for  corporate  applications  such  as 
SAP  NetWeaver  Application  Server  and 
SAP  NetWeaver  Pbrtal,  which  the  compa¬ 
ny  says  can  “provide  visibility  into  legacy 
SAP  system  connections.”  The  upgrade 
also  supports  WebSphere  and  WebLogic 
portals.  CoreFirst  1.4  includes  enhanced 
policy  management  control  and  broader 
protocol  support,  including  Java  messag¬ 
ing  service.  IBM  AS/400  connectivity  also 
is  new  to  this  release. 

“After  identifying  the  elements  of  a  com¬ 
plex  transaction,  firms  must  optimize  the 
entire  system  that  supports  that  transac¬ 
tion,”  says  Jean-Pierre  Garbani,  a  vice  presi¬ 
dent  at  Forrester  Research,  about  OpTier’s 
release  of  CoreFirst  1.4.“CoreFirst  performs 
three  functions  required  by  a  modern  ser¬ 
vice-oriented  architecture,”  which  Garbani 
explains  are  dependency  analysis,  moni¬ 
toring  and  optimization. 

Pricing  for  CoreFirst  1.4  is  based  per  CPU 
and  starts  at  about  $100,000. 


Competitor  Optinuity  also  enabled  its 
software  to  support  more  applications  by 
adding  “support  for  Simple  Object  Access 
Protocol  client  calls  to  various  Web  ser- 
vices.”The  company  says  it  enabled  its  C20 
Version  2.0  to  more  easily  interoperate 
with  multiple  third-party  systems,  without 
requiring  customers  to  do  a  lot  of  manual 
integration  work. 

“Optinuity  gives  you  a  tool  kit  with  which 
customers  can  automate  basically  any 
process  that  they  have,”  says  Rich  Ptak,  prin¬ 
cipal  analyst  with  Ptak,  Noel  &  Associates. 
“Competitors  such  as  OpTier  add  specific 
support  for,  say,  SAP  but  Optinuity  gives  cus¬ 
tomers  more  flexibility  to  build  automa¬ 
tion  and  remediation  into  any  process  by 
pulling  data  from  a  wide  range  of  sources.” 

C20  uses  centralized  server  software  to 
monitor  and  measure  tasks  against  pre¬ 
defined  IT  processes  by  using  data  collect¬ 
ed  by  software  agents  distributed  on  appli¬ 
cation,  Web  and  other  production  servers 
across  a  corporate  data  center.  C20  uses 
proxy  servers  to  monitor  actions  on  routers 
and  other  devices  onto  which  software 
agents  cannot  be  installed. 

C20  helps  automate  IT  production  tasks 
ranging  from  running  batch  jobs,  to  reboot¬ 
ing  a  server  to  troubleshooting  application 
performance  problems,  says  Kirk  Greene, 
senior  systems  architect  for  Galveston 
County  IT  in  Texas.  He’s  been  using  the  pre¬ 


vious  version  of  the  product  to  automate 
three  major  processes,  which  in  the  past 
would  fail  under  manual  execution. 

“We  did  scheduling  on  the  mainframe 
that  would  start  there  and  then  have  to  go 
over  to  a  Wintel  box,  and  one  of  our 
biggest  problems  was  that  the  second  part 
of  the  job  would  never  run  and  the  oper¬ 
ators  didn’t  know  it  had  arrived,”  Greene 
says.  “Optinuity  lets  you  build  live  flow¬ 
charts  so  you  can  automate  the  process 
by  specifying,  as  the  job  travels  from  place 
to  place  and  as  this  happens,  do  this,  or 
when  a  big  file  transfer  is  completed,  dis¬ 
continue  the  job.” 

Greene  says  in  light  of  the  recent  hurri¬ 
cane  activity  in  his  area  he  hasn’t  gotten 
the  newest  version  running, but  he  is  look¬ 
ing  forward  to  working  with  the  new  user 
interface  and  expanding  the  product’s 
use  beyond  three  processes.  He  also  says 
he  would  still  like  to  see  the  product  bet¬ 
ter  integrate  with  other  third-party  moni¬ 
toring  systems. 

C20  “is  stand-alone  now,  but  it  would  be 
helpful  for  it  to  integrate  with  a  [IBM 
Tivoli]  NetView  to  correlate,  say,  if  the  net¬ 
work  runs  more  slowly  when  a  certain  job 
is  processing,”  he  says. 

Pricing  for  C20  Version  2.0  starts  at 
about  $150,000  for  a  typical  multi-server 
application  environment  consisting  of  10 
to  12  CPUs.  ■ 
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OVER  50%  OF  ALL  DATA  BREACHES  COME  FROM  INSIDE  THE  PERIMETER. 
WHAT  WILL  IT  TAKE  FOR  YOU  TO  PROTECT  YOUR  ENTERPRISE? 

If  your  data  could  talk,  you’d  get  an  earful.  It  would  tell  you  that  its  value  on  the  open  market  has  sky-rocketed.  And  a  data 
breach  from  inside  the  perimeter  might  be  just  around  the  corner.  If  it  happens,  it  could  cost  millions.  Not  to  mention  reputations. 
That’s  why  there’s  EpiForce™  from  Apani  Networks™.  It’s  built  from  the  ground  up  to  secure  data  inside  the 
perimeter.  No  matter  what  platforms  you're  using.  Which  is  good  news  for  your  enterprise.  And  better  news  for  you. 


Apani 


To  learn  more  about  securing  inside  the  network  perimeter,  get  a  free  copy  of  "The  Definitive  Guide  to  Security  Inside 
the  Perimeter"  from  Realtime  Publishers,  sponsored  by  Apani  Networks.  Go  to  www.apani.com/nwguide 
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More  questions  than  answers 


HET  INSIDER 


Scott  Bradner 


You  can’t  get  them  all  right.  It’s 
now  been  more  than  a  year  and  a 
half  since  I  complained  that  the 
FCC  was  trying  to  deal  with  the 
complex  issue  of  wiretapping  the 
Internet  “with  unseemly  haste,” 
but  the  FCC  has  just  released  yet 
another  in  a  series  of  documents 
on  the  topic.  This  one,  like  its  pre¬ 
decessors,  leaves  the  reader  with 
more  questions  than  answers  — 
and  there  are  more  documents  to 
come. 

In  March  2004, 1  reported  on  an 
FCC  request  for  comments  on 


applying  the  Communications 
Assistance  for  Law  Enforcement 
Act  (CALEA)  to  the  Internet  and 
Internet-based  services  (See 
“Looking  for  the  dumb  ones,” 
www.networkworld.com, 
DocFmder:  9225). The  result  was  a 
Notice  of  Proposed  Rulemaking 
(DocFinder:  9226)  published  a 
few  months  later  (“FCC  chooses 
middle  road  on  ’Net  wiretapping,” 
DocFinder:  9227).  That  notice 
asked  for  comments  on  some  of 
the  FCC’s  tentative  conclusions. 

The  new  document  (DocFmder: 
9228)  represents  the  FCC’s  final 
decision,  based  at  least  somewhat 
on  comments  received  in  re¬ 
sponse  to  last  year’s  Notice  of 
Proposed  Rulemaking.  The  cur¬ 
rent  document  also  contains  a 
new  notice,  as  well  as  a  request  for 
comments  dealing  with  a  number 
of  topics,  but  is  mostly  focused  on 


the  FCC’s  conclusion  that  facili- 
ties-based  broadband  Internet 
access  providers  and  providers  of 
“interconnected  VoIP”  are  subject 
to  CALEAs  wiretapping  require¬ 
ments. 

The  logic  that  the  FCC  uses  is 
often  rather  tortured.  For  example, 
it  says  that  a  VoIP  provider  that 
uses  gateways  to  direct  calls  to 
and  from  the  public  switched  tele¬ 
phone  network  (PSTN)  fits  the 
switching  requirement  because  it 
“must  necessarily  use  a  router  or 
other  server  to  do  so.”  Of  course, 
this  condition  is  true  of  all  ser¬ 
vices  offered  over  the  Internet,  not 
just  interconnected  VoIPSo  where 
should  the  boundary  be? 

You  should  expect  that  a  large 
pod  of  lawyers  will  spend  lots  of 
clients’  money  (including  your 
tax  dollars)  arguing  the  details  of 
FCC’s  decision  and  the  authority 


of  the  commission  to  decide 
what  it  did  in  the  light  of  the 
enabling  laws.  From  my  strictly 
non-lawyer  point  of  view,  I  expect 
the  courts  to  toss  out  this  set  of 
decisions  but  that  Congress  will 
quickly  change  the  law  to  pro¬ 
duce  about  the  same  result. 

There  is  a  lot  of  strangeness  in 
this  document.  On  one  hand,  the 
FCC  says  that  an  Internet  access 
provider  would  have  “no  CALEA 
obligations  with  respect  to,  for 
example,  the  storage  functions  of 
its  e-mail  service,”  while  at  the 
same  time  implying  that  the  same 
access  provider  would  have  to  tap 
data  going  into  or  out  of  the  afore¬ 
mentioned  storage.  Seems  like  an 
irrelevant  difference.The  FCC  def¬ 
inition  of  an  interconnected  VoIP 
provider  is  strangely  worded:  It 
says  that  VoIP  providers  that  both 
send  calls  to  and  receive  calls 


from  the  PSTN  are  covered,  but 
ones  that  go  only  one  way  are  not, 
nor  are  ones  where  the  user  can 
employ  a  PSTN  gateway  provided 
by  a  third  party  as  long  as  the  VoIP 
provider  has  no  specific  arrange¬ 
ment  for  using  the  gateway 

The  FCC  still  considers  enter¬ 
prise  networks  exempt.  But  the 
commission  has  not  yet  made  up 
its  mind  about  a  number  of  other 
connectivity  providers,  such  as 
hotels.  This  is  far  from  the  last 
word  on  the  topic,  including  from 
me  next  week. 

Disclaimer:  Rules  like  this  are 
music  to  the  ears  of  law  school 
graduates,  but  I  got  no  input  from 
any  of  them  for  the  above. 

Bradner  is  a  consultant  with 
Harvard  University’s  University 
Information  Systems.  He  can  be 
reached  at  sob@sobco.com. 


Siebel  deepens  OfficeORM  integration 


BY  STACY  COWLEY, 

IDG  NEWS  SERVICE 

Siebel  Systems  last  week  re¬ 
leased  an  updated  version  of  its 
Professional  Edition,  a  lower-cost 
version  of  its  CRM  software  aimed 
at  small  and  midsize  business 
users. 

Siebel  Professional  Edition  7.8 
deepens  the  software’s  connection 
to  Microsoft’s  Office  applications, 
adding  integration  with  Microsoft’s 
Sharepoint  collaboration  tools  and 
allowing  users  to  directly  access 
Siebel  contacts  and  appointments 
from  Microsoft  Outlook. 

The  new  version  also  intro¬ 
duces  integration  with  Siebel 
Contact  OnDemand, Siebel’s  host¬ 
ed  software  for  call  routing  and 
other  telephone  communications 
infrastructure. 

Siebel’s  Professional  Edition 


Call  center 

continued  from  page  37 

tion  tools  so  far  has  been  an 
elusive  opportunity.  In  a  survey 
of  200  call  center  professionals, 
many  respondents  were  already 
using  quality-monitoring  soft¬ 
ware  (83%),  hiring  and  recruit¬ 
ing  tools  (44%),  e-learning  soft¬ 
ware  (37%)  and  agent  perfor¬ 
mance  analytics  (30%).  How- 


debuted  in  early  2004  and  now  is 
used  by  several  hundred  organi¬ 
zations,  according  to  Rob  Reid, 
Siebel’s  SMB  group  vice  presi¬ 
dent.  The  package  includes 
Siebel’s  sales,  service  and  market¬ 
ing  software,  with  other  features 
available  as  add-on  modules.  Its 
price  tag  is  $995  per  user,  about 
half  the  cost  of  Siebel’s  enterprise 
CRM  software,  which  allows 
greater  scalability 
Siebel’s  future  product  road 
map  and  pricing  are  somewhat 
uncertain  now  because  of  its 
pending  acquisition  by  Oracle, 
expected  to  close  early  next  year. 
Siebel  CRM  suite,  including  ver¬ 
sions  tailored  for  several  vertical 
industries,  such  as  manufacturing 
and  distribution,  telecom,  life  sci¬ 
ences,  financial  services  and  pub¬ 
lic  sector,  all  were  mentioned  by 


ever,  few  had  acquired  more 
than  one  tool  from  a  single  ven¬ 
dor,  according  to  the  Society  of 
Workforce  Planning  Profes¬ 
sionals. 

Among  respondents,  76%  said 
they  acquired  each  technology 
from  a  separate  source,  21%  said 
two  or  three  systems  came  from 
the  same  vendor  and  only  3% 
had  acquired  three  or  more 
products  from  one  source.  ■ 


Oracle  as  important  products. 
Siebel’s  top  customers  reads  like 
a  who’s  who  of  high  tech:  IBM, 
HR  Microsoft,  Cisco  and  Sun,  as 
well  as  Deutsche  Telecom,  GM 
and  Bank  of  America. 

To  maintain  Siebel’s  top  posi¬ 
tion,  Oracle  will  have  a  sales  team 


specifically  focused  on  selling 
only  the  CRM  product  line.  While 
it  will  continue  to  offer  Oracle’s 
own  CRM  software  and  the  CRM 
product  from  FeopleSoft,  Ellison 
made  it  clear  that  Siebel’s  soft¬ 
ware  and  its  development  and 
sales  expertise  will  drive  Oracle’s 


growth  in  this  market. 

Reid  doesn’t  anticipate  major 
shake-ups  for  Siebel’s  Profes¬ 
sional  Edition,  however. 

“1  can’t  speculate  on  what  will 
happen,  but  I  do  not  believe  that 
we  will  be  any  different  than  we 
are  nowf  Reid  said.  ■ 


Survey  says  software  spending  stable 


BY  ANN  BEDNARZ 

IT  budgets  are  generally  stable,  but  companies  are 
still  looking  for  ways  to  reduce  IT  expenses,  accord¬ 
ing  to  new  research  from  Goldman  Sachs. 

In  the  firm’s  latest  IT  Spending  Survey  conducted  in 
August  of  100  managers  at  multinational  Fortune 
1000  companies,  71%  of  respondents  said  their  IT 
budgets  are  stable.  Of  the  remaining  respondents, 
20%  said  their  IT  budgets  still  are  getting  squeezed  by 
top  management  and  falling  as  a  percentage  of  rev¬ 
enue.  Only  9%  indicated  their  IT  budgets  are  growing 
faster  than  the  overall  business  and  as  a  percentage 
of  the  company’s  revenue. 

As  companies  begin  to  slowly  but  surely  shift 
toward  deploying  services-oriented  architectures 
(SOA),  Goldman  Sachs  expects  they’ll  be  on  the 
lookout  for  infrastructure  software  —  such  as  sys¬ 
tems  management  and  security  products  —  and 
integration  services.  In  addition,  early  stage  SOAs  will 
require  software  to  help  companies  tie  together 
loosely  coupled  software  components,  including 
application  integration,  portal  and  business  process 
management  tools.  As  SOAs  mature,  the  need  for 
robust  infrastructure  products,  such  as  a  service  reg¬ 


istry  and  enterprise  service  bus,  may  become  more 
compelling,  according  to  the  firm’s  research. 

Conversely,  spending  on  server  hardware  might  de¬ 
crease  as  companies  shift  from  resource-consum¬ 
ing,  monolithic  applications  and  toward  loosely 
coupled  applications.  Spending  on  custom  applica¬ 
tion  software  could  fall  as  SOAs  emerge  and  make  it 
easier  for  companies  to  cobble  together  and  deploy 
applications  using  modular  services,  Goldman 
Sachs  reports. 

On  the  vendor  front,  business  intelligence  players 
are  ripe  for  gains.  Goldman  Sachs  routinely  asks 
respondents  which  vendors  are  gaining  and  which 
are  losing  share  of  IT  spending.The  firm  for  the  first 
time  added  business  intelligence  vendors  to  its 
menu  of  software  companies,  and  Hyperion  and 
Cognos  both  ranked  among  the  top  10  share  gain¬ 
ers.  The  analysts  say  the  popularity  of  business  intel¬ 
ligence  vendors  is  due  to  the  increasing  importance 
of  financial  analytic  applications. 

Server  virtualization  technology  also  is  in  de¬ 
mand.  VMware,  a  division  of  EMC,  led  the  pack  of 
companies  gaining  IT  spending  share,  Goldman 
Sachs  reports.  ■ 
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Each  week  Network  World  delivers  an 
extensive  line-up  of  product,  service  and 
industry  news,  analysis,  case  studies,  buyers 
guides,  expert  opinion  and  management 
advice  that  Network  IT  Executives  rely  on 
to  get  their  job  done. 

Your  FREE  subscription 
will  include... 

•  New  product  information  and  reviews  that  break 
through  vendor  hype  and  put  you  in  control  of  your 
technology  purchases 


•  Implementation  strategies  and  security  tips  and  tricks 
that  you  can  use  to  improve  your  infrastructure  and 
boost  your  company's  competitive  standing 

•  Tried-and-true  management  strategies  to  help  you 
boost  your  network  career 

An  insider's  view  on  how  your  competitors  are  using 
new  technology  to  their  business  advantage 


Plus  our  Special  Signature  Series 
Issues — Each  Signature  Series  issue  provides  insights, 
opinions  and  information  on  an  important  aspect  of  the 
industry  to  give  you  the  clearest  picture  of  the  current 
trends  and  trendsetters  in  the  Network  IT  market. 


To  subscribe  visit: 

apply.nww.com/free05 


Network  World,  Inc.,  |  118  Turnpike  Road,  Southborough,  MA  01772  (508)460-3333 
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You  can't  see  it.  Or  smell  it.  Yet  it  is  all  around  you,  everywhere  you  are  and  everywhere  *>; 

you  go.  Broadband  wireless  access  is  changing.  Becoming  faster.  Becoming  seamless.  ;  -y ■■'•-*>  -Mil 


Becoming  M0T0wi4.  Building  on  the  WiMAX  standard,  Motorola  has  created  MOTOwi4, 
an  entire  portfolio  of  solutions  from  carrier-class  networks  to  advanced  handheld  devices. 

In  places  all  around  the  world,  M0T0wi4  will  offer  more  people  more  powerful 
communications  at  home,  at  work  and  on  the  go.  Find  out  more  at  motorola.com/wi4  ,  f  . 
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User  expedience  may  vary  based  on  network  conditions  where  available. 
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The  point  of  business  is  cost-effectively  connecting  enterprise  resources  to  better  serve  your  customers.  With  a  wholly  owned,  end-to-end 


network — backed  by  a  team  of  consultants  working  with  you  to  develop  the  optimal  solution  for  your  environment — 1  ime  Warner  Cable  delivers 

■Sfct 

reliable  business  communications.  Add  to  that,  standard  and  customized  SLAs,  along  with  a  full  suite  of  data,  video,  and  security  solutions— 


v  ; 


including  Metro  Ethernet,  Teleworker  Solutions,  Branch  Office  Connectivity — and  you  have  a  scalable  infrastructure  for  sharing  information, 
reducing  costs  and  realizing  the  value  on  your  IT  investment.  That's  the  point  of  business. 
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"Highest  Customer  Satisfaction  With  Business  Broadband  Data  Service  Providers' 


J,D,  Rawer  and  Associates  2005  Major  Provider  Business  TeieBommunioattons-SerwEes  Study*". 


Broadband  Data  segment includes  services  suob  as'DSL,  cable:  modem,  tfraffiet  and 
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rn  THE  INTERNET  ES  VPNS  ■  INTEREXCHANGES  AND  LOCAL  CARRIERS  K  WIRELESS  8  REGULATORY  AFFAIRS  *  CARRIER  INFRASTRUCTURE 


Short  Takes 


■The  city  of  Philadelphia  has  select¬ 
ed  EarthLink  to  deploy  a  citywide 
wireless  broadband  network,  the 
largest  municipal  Wi-Fi  network  in 
the  U.S.,  the  company  announced 
last  week.  The  Wi-Fi  deployment  in 
the  country's  f ifth-largest  city  is 
expected  to  be  finished  by  the  fourth 
quarter  of  2006,  EarthLink  says.  The 
ISP  will  deploy  a  mesh  Wi-Fi  network 
covering  135  square  miles.  Under  the 
terms  of  the  EarthLink  proposal,  no 
city  or  taxpayer  dollars  will  be  used 
to  fund  the  project.  EarthLink  will 
finance,  build  and  manage  the  wire¬ 
less  network,  and  share  revenue  with 
the  city’s  Wireless  Philadelphia  initia¬ 
tive.  Terms  of  the  deal  were  not 
immediately  disclosed.  Philadelphia's 
plan  to  build  a  citywide  Wi-Fi  network 
has  met  criticism  from  Verizon, 
which  offers  DSL  and  wireless 
broadband  service  to  the  area. 
EarthLink  and  the  city  have  reached 
agreement  on  the  major  terms  of  the 
contract  and  are  working  to  com¬ 
plete  the  agreement  within  60  days. 
Earthlink  will  first  build  a  15-square- 
mile  Wi-Fi  network  to  test  the  equip¬ 
ment  and  service. 

■  Citing  the  growth  of  broadband, 
triple  play,  Ethernet  and  storage-area 
network  services  and  the  resultant 
strain  on  metropolitan  networks, 
Meriton  Networks  last  week 
announced  the  acquisition  of  Mahi 
Networks,  a  maker  of  reconf  ig- 
urable  optical  add/drop  multiplexers. 
ROADMs  were  the  missing  piece  in 
Meriton's  arsenal  of  metropolitan 
optical  systems,  The  company  makes 
optical  switches,  multiplexers,  and 
network  management  and  planning 
systems  for  metropolitan  access, 
edge  and  core  applications.  Meriton's 
systems  integrate  optical  ADM  func¬ 
tionality  with  wavelength  switching. 
Meriton  was  recently  selected,  along 
with  partner  Fujitsu,  as  a  supplier  for 
BT's  $19  billion  21st  Century  Network 
project.  Meriton  just  landed  a  third 
round  of  funding  for  $54  million,  more 
funds  than  the  company  accumulated 
—  $46  million  —  in  the  first  two 
rounds  combined. 


Qwest  touts  new  IP  offerings 


BY  JIM  DUFFY 

Qwest  last  week  said  it  has  revamped  its 
iQ  Networking  business  IP  network  and 
service  portfolio  to  address  user  require¬ 
ments  for  intelligent  transport,  dedicated 
Internet  access,  security  and  service  quali¬ 
ty  assurance. 

Previously  separate  service  networks  for 
frame  relay  ATM  and  dedicated  Internet 
access  are  being  collapsed  into  a  single  pri¬ 
vate  IP  MPLS  core  in  an  effort  to  migrate 
customers  to  managed  Layer  2/3  VPNs  pro¬ 
visioned  over  three  port  types:  dedicated 
Internet  access,  private  MPLS  and  private 
MPLS  enhanced.  The  dedicated  Internet 
access,  frame  and  ATM  “networks”  now  will 
run  as  services  over  an  IP  MPLS  core 
instead  of  requiring  dedicated  facilities  and 
back-end  operations. 

To  date,  dedicated  Internet  access  service 
has  been  ported  to  the  new  platform  and 
marketed  as  the  iQ  Networking  Internet 
port. 


Customers  will  feel  the  transition  to  iQ 
Networking  through  new  contracts  and  a 
new  user  interface.  They  do  not  have  to 
change  customer  premises  equipment  or 
ports,  and  for  dedicated  Internet  access  cus¬ 
tomers  there  is  no  change  in  the  price  of  the 
service,  Qwest  says. 

“It’s  a  smooth  transition,”  says  Martin 
Capurro,  senior  director  of  global  data  and 
IP  product  management  for  Qwest.  “We’ve 
spent  a  lot  of  time  to  make  it  work.” 

Though  dedicated  Internet  access  cus¬ 
tomers  have  already  switched,  frame  and 
ATM  users  might  not  be  ready  to  switch 
contract  “vehicles”  for  the  private  MPLS  and 
private  MPLS  enhanced  services,  Capurro 
says.  For  those  customers  and  for  those 
needing  minimal  disruption  in  migrating, 
Qwest’s  existing  IP-enabled  frame  and  ATM 
services  have  been  positioned  as  stepping 
stones  to  the  iQ-based  services. 

Currently  private  MPLS  and  private  MPLS 
enhanced  services  are  Layer  3  VPNs.  VPLS- 


based  Layer  2  VPNs  are  intended  for  deliv¬ 
ery  in  mid-2006,  Capurro  says. 

Nearer  term,  Qwest  is  looking  to  add 
another  level  of  QoS  to  the  iQ  Networking 
service  this  quarter.The  carrier  plans  to  offer 
a  new  QoS  queue  to  support  applications 
requiring  more  than  a  mid-tier  “silver”  treat¬ 
ment  but  below  a  premium  “gold”  quality 
Qwest  also  is  extending  the  reach  of  its  iQ 
Networking  services  globally  through  an 
agreement  with  BT  Infonet.  It  will  let  Qwest 
reach  240  countries  with  the  service  and 
potentially  enables  BT  Infonet  to  offer  ser¬ 
vices  domestically  over  Qwest  facilities. 

This  extended  reach  will  support  standard 
network-based  service-level  agreements 
(SLA)  with  general  availability  slated  for  late 
December,  Capurro  says.  End-to-end  SLAs 
are  targeted  for  February 
Qwest  also  offers  the  option  of  having  the 
carrier  install  and  manage  new  Ethernet 
CPE  for  iQ  Networking  based  on  Adtran, 
Cisco  and  Tasman  Networks  routers.  ■ 


With  all  the  churn  and  chaos  in  the  carri¬ 
er  market  these  days  —  not  to  mention  the 
plethora  of  new  technologies  and  services 
—  telecom  managers  might  wonder  how 
to  select  service  providers.  Here  are  a  few 
tried  and  tested  recommendations: 

•  Don’t  be  shy  about  issuing  a  request  for 
information  (RF1).  It  might  seem  as  though 
issuing  an  RFI  creates  extra  work  for  your 
team,  but  it  can  be  a  critical  first  step.  The 
process  helps  to  uncover  your  organiza¬ 
tion’s  business  and  technical  requirements, 
and  the  document  provides  helpful  context 
to  service  providers. 

Finally  responses  to  the  RFI  can  spark 
ideas.  A  good  RFI  is  as  the  name  implies:  a 
concise  statement  of  your  business  require¬ 
ments  together  with  a  request  for  informa¬ 
tion  on  how  service  providers  would  posi¬ 
tion  their  offerings  to  meet  your  needs. 

•  Create  a  matrix  RFP  Once  you’ve 
received  the  RFI  responses,  you’ll  have  a 
better  idea  which  services  you’re  looking 
for  OP  Centrex?  MPLS?). The  next  step  is  to 


Hints  for  selecting 
your  service  providers 


issue  an  RFP  for  those  services. 

The  most  succinct  and  effective  way  to  do 
that  is  via  the  “matrix  RFP”:  List  your  service 
requirements  down  the  side,  and  the  geo¬ 
graphies  in  which  you  need  those  services 
across  the  top.  For  example, you  might  need 
wireless  voice  and  data  services  just  in 
North  America  but  broadband  WAN  ser¬ 
vices  globally  Ask  carriers  to  bid  on  any  ser¬ 
vices  and  any  geographies  they  feel  they 
can  serve  effectively 

•  Don’t  overlook  third-party  or  specialized 
carriers.  These  days,  with  Google  operating 
a  Wi-Fi  network  and  eBay  buying  VoIP 
provider  Skype,  the  very  definition  of  a  “ser¬ 
vice  provider”  is  getting  blurry  Although  as 
an  enterprise  telecom  manager,  you’re  not 
likely  to  turn  to  Google  or  eBay  for  your 
communications  requirements  any  time 
soon.  It’s  definitely  worth  the  effort  to  look 
at  carriers  that  specialize  in  addressing 
your  business  requirements. 

For  example,  extranet  providers  such  as 
Sawis  Communications  specialize  in  pro¬ 
viding  optimized  transport  for  financial 
and  other  applications.  Providers  such  as 


Internap  Network  Services  focus  on  appli¬ 
cation  acceleration.  And  players  such  as 
Megapath  provide  managed  access  for 
remote  offices  and  telecommuters.  Cast  the 
widest  net  possible. 

•  Expect  to  educate  providers.  One  of  the 
ironies  of  the  rapid  pace  of  technical 
change  is  that  companies  often  know  more 
about  how  new  technologies  can  meet 
their  needs  than  the  service  providers  offer¬ 
ing  them.  A  case  in  point  is  VoIP  Many  ser¬ 
vice  providers  still  are  taking  their  time 
with  rollouts,  despite  growing  enterprise 
demand.  If  you  think  a  particular  technol¬ 
ogy  might  be  a  fit,  demand  it. 

•  Stress  support  requirements.  One  of  the 
first  casualties  of  the  telecom  chaos  is  top- 
tier  support.  Don’t  assume  providers  will 
automatically  meet  your  needs  here  — 
specify  your  requirements  for  response 
time,  escalation  procedures  and  the  like. 

Johnson  is  president  and  chief  research 
officer  at  Nemertes  Research,  an  indepen¬ 
dent  technology  research  firm.  She  can  he 
reached  at  johna@nemertes.com. 


46  •  www.networkworld.com  •  10.10.05 


Virtela  monitors,  manages  customerowned  devices 


BY  TIM  GREENE 

Virtela  has  announced  a  service 
for  monitoring  and  managing  cus¬ 
tomer-owned  networking  gear  so 
businesses  can  offload  some  IT 
chores  while  keeping  control  of 


equipment. 

Called  Remote  Monitoring  & 
Management  (RMM),  the  service 
covers  LAN,  wireless  LAN  and 
WAN  gear,  security  equipment, 
VoIP  devices  and  servers. 


Under  RMM,  customers  choose 
what  devices  they  need  help  with 
and  turn  over  monitoring,  man¬ 
agement  or  both  to  Virtela.  This 
provides  a  potentially  large  sav¬ 
ings  by  reducing  staffing  needs, 


the  company  says. 

Virtela’s  main  line  of  business  is 
providing  VPNs  over  a  redundant 
backbone  network  that  is  pieced 
together  using  bandwidth  on  net¬ 
works  owned  by  many  wholesale 


BENEFITS 

•  Strong  1024  bit  dual  key  email 
encryption 

•  Meets  HIPAA  requirements 

•No  software  to  install 

•  Works  universally  across  different 
OS  platforms 

•  No  user  or  message  fees 

•  Easy  setup  and  integration 

FEATURES 

•  [MXJLock  -  outbound  email 
encryption 

•  Unique  dual-key  locking  system 

•  Secure  store  methodology 

•  Fully  customizable  policy  management 
system 

•  Identity  Management 

•  Data  access  notification 
(return  receipt) 

•  Banned  IP  address  (intrusion  attempt) 

•  Customizable  logo  and  header 
(secure  emails) 
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Secure  Email 


by  ESPION 

Secure  Email  with  1024  bit 
Strong  Dual  Key  Encryption 

Meets  HIPAA  Requirements 

—v— 

Your  confidential  email  should  be  just  that,  confidential.  Now  it  can 
be  easy  and  convenient,  too.  ESPION  is  proud  to  introduce  [MXJLock 
Secure  Email.  [MXJLock  is  the  only  secure  email  solution  that  utilizes 
a  completely  web-based  interface  and  does  not  require  any  software 
to  be  installed.  Thus,  it  works  universally  across  operating  systems 
without  complex  setup. 


[MXJLock  employs  a  proprietary  dual  key  locking  system  with  up 
to  1024  bit  encryption.  Both  keys  are  required  to  access  an  email. 
[MXJLock  is  simply  the  strongest  email  encryption  available. 


[MXJLock  is  offered  with  a  device  license.  There  are  no  user  or 
message  fees,  therefore,  you  realize  a  reduction  inTCO.  It  is  available 
both  as  a  stand-alone  appliance  or  as  an  integrated  module  on  the 
intelligent  ESPION/nterceptor  email  gateway  security  appliance. 


ESPION 

Smart.  Secure.  Simple. 


Corporate  Offices: 

ESPION  International,  Inc: 

Corporate  Headquarters: 

ESPION  International,  Inc. 

Call  [866]  377-4685 

11211  Industriplex  Blvd.,  Suite, 800 

3200  Park  Center  Dr.,  Suite  600 

for  more  information  or  to 

Baton  Rouge,  LA  70809 

Costa  Mesa,  CA  92626 

arrange  a  free  evaluation! 

www.espionintl.com 

FREE  1 5 -day  trial! 


providers.This  gives  the  company 
an  international  staff  in  many 
countries,  potentially  giving  RMM 
customers  access  to  local  help, 
says  Daniel  Golding,  a  senior  ana¬ 
lyst  with  Burton  Group. 

Because  Virtela  set  out  to  man¬ 
age  VPNs,  including  the  customer- 
site  gear,  it  is  prepared  for  moni¬ 
toring  and  managing  large  num¬ 
bers  of  customer  devices.“It’s  non¬ 
trivial  to  do  this  well,”  Golding 
says.  The  platform  the  company 
developed  to  do  this  also  is  well 
suited  to  the  RMM  service,  he 
adds. 

This  type  of  service  is  generally 
provided  by  systems  integrators 
such  as  IBM  that  try  to  negotiate 
complete  outsourcing  deals  with 
customers  as  opposed  to  farming 
out  portions  of  the  management, 
Golding  says.  Until  RMM,  Virtela 
was  similar  in  this  regard. 

RMM  is  an  outgrowth  of  Virtela’s 
managed  service  offerings  in 
which  it  supplies  the  hardware  it 
manages,  and  uses  the  same  net¬ 
work  operations  and  security  cen¬ 
ters  as  the  other  service.  Before, 
customers  had  to  accept  a  fully 
managed  service  that  included 
Virtela  engineering  and  provision¬ 
ing.  “Unbundling  the  management 
and  monitoring  from  the  provi¬ 
sioning  is  long  overdue,”  he  says. 

Customers  can  access  data 
about  their  network  via  Virtela- 
View  portal  to  a  network  opera¬ 
tions  center  to  see  reports  and  to 
manage  devices  themselves  if,  for 
example,  they  want  to  change  the 
configuration  of  a  firewall.The  ser¬ 
vice  monitors  the  status  of  de¬ 
vices,  and  sends  notifications  of 
failures  and  violations  of  set 
thresholds. 

Virtela  will  contact  service  pro¬ 
viders  that  supply  access  lines  if  it 
determines  network  problems  are 
with  the  provider.  RMM  also  han¬ 
dles  software  updates,  and  has  a 
process  for  authorizing  configura¬ 
tion  changes  to  devices  that  en¬ 
sures  only  changes  authorized  by 
customers  are  carried  out. 

Pricing  depends  on  the  number, 
type  and  size  of  equipment,  and 
whether  it  is  just  monitored  or 
monitored  and  managed.  Mon¬ 
itoring  pricing,  for  example,  ranges 
from  $40  per  month  for  a  small 
LAN  switch  to  $350  for  a  security 
device. Virtela  also  charges  a  $100 
to  $500  per-device  start-up  fee  that 
varies  depending  on  the  com¬ 
plexity  of  the  device.* 


You  need  a  darn  good  reason 
to  introduce  another  vendor 
into  your  network.  Here  are  four. 

Our  intelligent  overlay  network 
delivers  automated  core-to-edge 
security.  It's  based  on  an  open 
architecture.  It  optimizes 
applications.  It  makes  VoIP  possible 
on  your  existing  infrastructure. 

And  that  is  just  the  beginning. 
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I  Network  problem  solver? 

. 

Meet  your  new  assistant 


EtherScope™ 
Network  Assistant 


Introdudng  the  EtherScope™  Network  Assistant 
-  your  eyes  into  the  network  to  help  you  spot 
problems  and  solve  them  faster  than  ever.  You 

don't  have  time  for  trial  and  error.  Or  methods 
that  only  provide  part  of  the  picture.  That's  why 
Fluke  Networks'  new  EtherScope  analyzer,  with  its 
immediate  discovery  and  fast  diagnostics,  helps 
you  quickly  isolate  urgent  problems  on  your  giga¬ 
bit  network  as  well  as  those  nagging  issues  that 
may  be  keeping  it  from  performing  at  optimum 
level.  Fast.  Accurate.  EtherScope.  So  you'll  have 
more  time  to  get  to  the  several  dozen  items  on 
your  "to  do"  list.  Visit  our  web  site  and  check  out 
the  virtual  demo.  Then  request  a  test  drive  in  your 
office  -  on  your  network.  Decide  for  yourself 
whether  or  not  EtherScope  Network  Assistant  will 
be  your  next  new  hire. 


Your  network  assistant  is  waiting 
to  show  you  what  if  can  do  to  help 
make  your  job  easier.  Just  go  to 


www.flukenetworks.com/escope 


and  take  a  tour  of  the  virtual  demo. 
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TECHNOLOGY  UPDATE 


■  AN  INSIDE  LOOK  AT  TECHNOLOGIES  AND  STANDARDS 


802.1AE  plan  aims  to  safeguard  LANs 


HOW  IT  WORKS:  802.1AE 

802.1  AE  Media  Access  Control  Security  (MACSec)  secures  traffic  on  a  hop- 
by-hop  basis,  protecting  LAN  devices  from  unauthorized  communication. 


D  Station  A  uses  a  cryptography  key,  pre-arranged  with  the  switch,  to  encrypt  a  user  data  message. 
Station  A  calculates  the  integrity  check  value  and  appends  it  to  the  frame. 

B  Station  A  encapsulates  the  frame  with  a  MACSec  header  and  sends  it  to  the  switch. 

B  The  switch  receives  the  packet  and  decapsulates  the  frame.  It  then  calculates  an  integrity  check 
value  for  the  received  frame,  and  decrypts  the  message  using  the  key  shared  with  A. 

The  switch  checks  whether  the  received  integrity  check  value  from  the  packet  is  the  same  as  the 
integrity  check  value  it  calculated. 

If  the  integrity  check  values  don't  match,  the  switch  discards  the  packet;  otherwise  it  processes  the  data. 

□  The  message  is  in  the  clear  at  the  switch.  The  switch  follows  Steps  1  and  2  using  the  cryptography 
key  it  previously  established  with  Station  B. 

□  Station  B  receives  the  frame  following  Step  3,  using  the  key  it  established  with  the  switch  to  decrypt 
the  message. 


BY  ALLYN  ROMANOW 

Because  networks  are  vulnerable  to  con¬ 
figuration  errors,  miswiring  and  malicious 
attacks  that  can  disrupt  enterprise  and  ser¬ 
vice  provider  operations,  it  is  essential  for 
companies  to  apply  multiple  security 
mechanisms  to  protect  their  data,  applica¬ 
tions  and  network  functions.  The  forthcom¬ 
ing  IEEE  802. 1AE  standard  helps  prevent 
disruptions  to  Ethernet  networks  by  pro¬ 
tecting  LAN  devices  from  unauthorized 
communication. 

The  IEEE  802.1  Security  Task  Group  is 
developing  a  suite  of  protocols  to  secure 
LANs.  The  principal  one  is  IEEE  802. 1AE 
Media  Access  Control  Security  (MACSec), 
which  integrates  security  protection  into 
wired  Ethernet  to  secure  LANs  from  attacks 
such  as  passive  wiretapping,  masquerading, 
man-in-the-middle  and  some  denial-of-ser- 
vice  attacks.  MACSec  is  in  the  final  stage  of 
standardization  and  is  expected  to  be  pub¬ 
lished  in  early  2006. 

MACSec  helps  assure  ongoing  network 
operations  by  identifying  unauthorized  sta¬ 
tions  on  a  LAN  and  preventing  communi¬ 
cation  from  them.  It  protects  control  proto¬ 
cols  that  manage  bridged  network  and 
other  data  through  cryptography  tech¬ 
niques  that  authenticate  data  origin, protect 
message  integrity,  and  provide  replay  pro¬ 
tection  and  confidentiality  By  assuring  that 
a  frame  comes  from  the  station  that 
claimed  to  send  it,  MACSec  can  mitigate 
attacks  on  Layer  2  protocols. 

The  proposed  standard  safeguards  com¬ 
munication  between  trusted  components 
of  the  network  infrastructure  by  providing 
hop-by-hop  security  This  distinguishes  it 
from  IPSec,  which  protects  applications  on 


an  end-to-end  basis.  Network  administra¬ 
tors  make  use  of  MACSec  by  configuring  a 
set  of  network  devices  to  use  the  protocol. 

When  a  frame  arrives  at  a  MACSec  station, 
the  MACSec  Security  Entity  (SecY)  de¬ 
crypts  the  frame  if  necessary  and  computes 
an  integrity  check  value  (ICV)  on  the  frame 


and  compares  it  with  the  ICV  included  in 
the  frame.  If  they  match,  the  station  process¬ 
es  the  frame  as  normal.  If  they  do  not 
match,  the  port  handles  the  frame  accord¬ 
ing  to  a  preset  policy  such  as  discarding  it. 

Web  caching  and  network  traffic  man¬ 
agement  work  because  data  is  in  the  clear 


as  it  passes  through  LAN  stations,  making 
packet  inspection  possible.  On  egress,  the 
SecY  computes  and  appends  a  new  ICV  to 
the  frame  and  encrypts  it,  if  desired,  before 
sending  it  out. 

802. 1AE  provides  encapsulation  and  the 
cryptography  framework  for  Ethernet  pro¬ 
tection.  It  requires  supporting  protocols  for 
key  management,  authentication  and 
authorization.To  meet  this  need,  the  IEEE  is 
defining  an  additional  standard,  802.  laf 
MAC  Key  Security  an  extension  of  802.  IX 
that  manages  short-lived  session  keys  used 
to  encode  and  decode  messages.  An  initial 
key  or  master  key  is  typically  obtained  by 
an  external  method  such  as  802.  IX  and 
IETF’s  Extensible  Authentication  Protocol.  A 
third  related  protocol  under  development 
is  802. 1AR,  Secure  Device  Identity  which 
ensures  the  identity  of  the  trusted  network 
component. 

The  MACSec  standard  chooses  to  use  an 
authentication  and  encryption  cipher,  Gal¬ 
ois/Counter  Mode  (GCM)  for  AES  128,  a 
mode  of  operation  approved  by  the 
National  Institute  of  Standards  and  Tech¬ 
nology.  GCM  can  be  used  for  message 
integrity  plus  encryption  or  for  message 
integrity  alone.  GCM-enabled  encryption 
easily  scales  up  to  multigigabit  line  rates  in 
economical  hardware. 

MACSec  does  not  take  the  place  of 
802.1  li,  the  security  protocol  for  wireless 
LANs.  Nor  does  it  supplant  the  need  to  pro¬ 
tect  applications  with  end-to-end  security 
protocols.  MACSec’s  focus  is  on  securing 
network  operation. 

Romanow  is  a  technical  leader  for  Cisco. 
She  can  be  reached  at  allyn@cisco.com. 


What  is  the  Piggy  Bank  Semantic  Web  browser 
extension  for  Firefox? 

Released  by  the  SIMILE  Project  (http://simile.mit.edu), 
Piggy  Bank  is  the  Semantic  Web  browser  extension.  The 
Semantic  Web  initiative  has  defined  a  standard  data 
model  called  Resource  Description  Framework,  useful 
for  organizing  content  on  the  Web  independent  of  for¬ 
matting.  Data  represented  in  RDF  is  easier  to  reuse 
than  information  contained  in  standard  HTML  pages. 
Piggy  Bank  is  used  to  extract  information  from  existing 


Web  pages  and  then  store  it  using  RDF.  If  a  Web  page 
already  has  links  to  RDF  information,  Piggy  Bank  simply 
retrieves  that  information;  otherwise,  it  employs  custom 
software  to  extract  the  RDF  data  from  the  page. 

For  a  copy  of  Piggy  Bank,  go  to  www.networkworld 
.com,  DocFinder:  9230  using  Firefox  and  click  the  ‘Get 
Piggy  Bank’  button.  Add  the  download  site  to  the  list  of 
sites  allowed  to  install  software  in  Firefox,  accept  the 
prompt  to  install  the  unsigned  download  and  restart  the 
browser.  When  Firefox  restarts,  follow  the  prompts  to 
set  up  your  Piggy  Bank.  From  there,  you  can  browse  the 


Simile  site  using  Piggy  Bank  to  familiarize  yourself 
with  the  system.  Piggy  Bank  works  well  to  collect 
RDF  content  from  other  sites  and  stores  it  locally  for 
reuse.  Gathering  RDF  data  from  older  Web  sites 
requires  screen  scrapers  to  filter  the  data.  Some 
examples  are  provided,  as  are  screen-scraper  devel¬ 
opment  guidelines. 

Blass  is  a  network  architect  at  Change@Work  in 
Houston.  He  can  be  reached  at  dr.internet@changeat 
work.com. 
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GEARHEAD 

INSIDE  THE 
NETWORK 
MACHINE 

Mark  Gibbs 


Connecting  existing  phones  to  VoIP 

L 


et  us  start  with  a  question  that 
arose  while  we  were  testing  USB 
I  drives:  Does  anyone  know  how 
to  turn  off  the  stupid  Windows  alert 
that  says  “This  device  can  perform 
faster  if  you  connect  it  to  a  Hi-Speed 
USB  2.0  port”? 

This  is  shown  when  you  plug  a  USB 
2.0  device  into  a  USB  1.1-compliant 
port,  and  it  is  a  really  stupid  message 
if  you  don’t,  in  fact,  have  a  USB  2.0-compliant  port,  which  is 
something  Windows  can  easily  determine. 

Another  amazingly  dumb  message  we  got  when  we  were 
trying  to  view  an  unformatted  USB  drive  with  Windows 
Explorer  was  “Volume  information  for  this  disk  cannot  be 
found.”OK,we  have  no  problem  with  the  message  so  far, but 
that  was  followed  by  “This  may  happen  if  the  disk  is  a  1394 
or  USB  device  on  a  Windows  2000  machine.” 

What  this  alert  really  says  is  that  the  Microsoft  engineers 
couldn’t  be  bothered  to  test  which  operating  system  they 
were  running  on  and  apparently  figured  that  a  generic  but 
useless  message  would  cover  enough  ground  so  they 
could  get  on  to  a  more  interesting  project. 

Anyway  this  week,  more  VolPspecifically  devices  to  VoIP- 
enable  existing  phones. 

The  first  of  these  is  the  Internet  Phone  Wizard  (1PW)  from 


Actiontec,  which  is  designed  to  provide  access  to  two  lines: 
A  VoIP  line  using  Skype  and  an  optional  plain  old  tele¬ 
phone  service  (POTS)  line  (www.networkworld.com, 
DocFinder:9231). 

The  1PW  measures  about  4.5  by  3.25  inches  by  1  inch  and 
has  three  ports  —  two  RJlls  for  an  incoming  phone  line 
and  telephone  handset,  and  a  USB  port  to  connect  to  your 
PC  (note  that  the  1PW  is  powered  by  the  USB  port  —  in 
otherwords.it  doesn’t  need  a  power  supply  aka  a  wall  wart). 

Installing  the  required  USB  drivers  is  straightforward  (the 
IPW  runs  only  on  Windows  2000  and  XP  so  far). 

Calls  can  be  made  and  received  using  either  line  and  you 
can  put  either  line  on  hold  to  take  a  call  on  the  other. 

The  IPW  is  more  comfortable  to  use  than  the  typical 
Skype  PC  headset  and  that  makes  it  worth  getting  if  you  are 
a  Skype  user,  even  if  you  don’t  use  it  with  a  POTS  line. 

The  device  is  more  or  less  flawless,  except  that  it  didn’t 
work  as  an  incoming  line  to  our  Siemens  Gigaset  two-line 
telephone.  We  have  yet  to  find  out  why  but  suspect  the  sig¬ 
nal-voltage  levels  generated  by  the  IPW  are  too  low. 

This  is  a  great  device  and  at  $70  is  reasonably  priced. 

Our  other  VoIP  device  is  the  PhoneGnome  from 
TelEvolution  (www.phonegnome.com). 

Like  the  IPW  the  PhoneGnome  handles  a  POTS  line  and 
a  VoIP  line,  but  rather  than  being  tied  to  a  single  VoIP  ser¬ 
vice  the  PhoneGnome  works  with  any  Session  Initiation 
Protocol  (SlP)-based  provider.  The  PhoneGnome  provides 


a  SIP  service  and  a  gateway  to  other  SIP  providers. 

But  you  can’t  use  the  PhoneGnome  with  Skype,  because 
Skype  uses  a  proprietary  protocol  (see  DocFinders:  9232 
and  9233).  Also  note  that  while  Vonage  is  a  SIP  service, you 
also  can’t  use  PhoneGnome  with  it  because  Vonage  does¬ 
n’t  allow  gatewaying  with  any  upstart  VoIP  providers. 

The  PhoneGnome  is  roughly  the  same  size  as  the  IPW  but 
requires  a  wall  wart.  Also,  unlike  the  IPW  the  PhoneGnome 
doesn’t  require  software  or,  for  that  matter,  a  computer. The 
ports  on  the  PhoneGnome  consist  of  two  RJ1  Is  for  line  in 
and  handset,  and  an  RJ45  for  a  broadband  connection. 

One  disappointment:  the  PhoneGnome  won’t  initialize 
without  a  POTS  line! 

The  PhoneGnome  comes  with  lots  of  useful  features, 
including  a  built-in  speech  generator  to  tell  you  status 
and  configuration  details,  voice  mail  to  e-mail  and 
telemarketer  blocking.  If  you  want  to  call  regular  POTS 
lines,  outbound  calls  are  priced  comparably  to  Skype’s 
service.  At  $120  PhoneGnome  provides  an  interesting, 
sophisticated  and  powerful  single-line,  standards-based 
VoIP  service. 

Of  course,  if  your  broadband  connection  stinks,  the  VoIP 
service  will  be  disappointing.  Guess  what  next’s  week 
topic  will  be?  Wild  surmise  to  gearhead@gibbs.com,  and  if 
you’re  feeling  bloggish,  check  Gibbsblog  (www. network 
world,  com/weblogs/gibbsblog). 


The  scoop:  Vaio  VCG-V620G,  by  Sony  about  $2,700. 

What  it  is:  The  Sony  Vaio  V  Series  are  all-in-one  PCs  that  combine 
an  LCD  screen  with  a  Windows  PC  and  speakers  to  create  one 
device  instead  of  two  or  more  (such  as  monitor  and  speakers). The  V620G  model 
we  tested  included  a  20-inch  widescreen  display,  integrated  wireless  LAN 
(802.1  lb/g)  and  a  TV  tuner  card  with  a  slew  of  bundled 
personal  video  recorder  (PVR)  software,  so  the  PC  can 
double  as  a  TV  and  recorder. 

On  the  PC  side,  the  V620G  includes  an  Intel  Pentium  4 
processor  (3.4-GHz  with  1 M  byte  of  Layer  2  cache),  1G  byte 
of  RAM,  a  250G-byte  hard  drive  and  Nvidia  Force  FX 
Go5700  memory  card  with  128M  bytes  of  RAM.  A  DVD+R 
Double  Layer  /  DVD+/-RW  drive  means  any  TV  shows  you 
record  with  the  PVR  can  be  easily  transferred  to  a  DVD. 

Other  ports  and  features  include  four  USB  2.0  ports,  a 
10/100  Ethernet  port,  a  V90compatible  fax/modem  port, 
two  four-pin  i.Link  (Sony’s  version  of  IEEE  1394)  ports,  an 
optical  out  port  and  S-Video  input.  An  integrated  media 
card  slot  can  read  Memory  Stick,  Memory  Stick  Pro  and 
Memory  Stick  Duo  cards,  making  for  easy  transfer  of 
digital  photos  or  music  files  to  the  device.  A  PCM¬ 
CIA  card  slot  is  situated  in  the  side  of  the  device. 

Why  it’s  cool:  Sony  may  not  have  invent¬ 
ed  the  all-in-one  PC  concept,  but  it  certainly 
will  drive  the  concept  forward  to  the  masses.  The 
V620G  is  so  beautiful  to  look  at  that  you  almost  don’t  want 
to  set  it  up  —  you  want  to  place  it  on  a  mantle.  Hooking  it 


The  Vaio  VCG-V620G  is  a 
widescreen  display  that 
as  a  TV  and  recorder. 


up  is  as  easy  as  plugging  in  the  power  cord. There’s  no  separate  receiver  for  the 
wireless  keyboard  and  mouse;  even  that  is  integrated.Turning  on  the  WLAN  is  as 
easy  as  flipping  the  switch.  You  have  to  configure  the  WLAN,  but  that’s  done  in 
Windows,  as  occurs  in  a  normal  PC. 

The  picture  quality  from  the  LCD  screen  is  outstanding,  and  the  sound  from  the 
integrated  speakers  blew  us  away  whether  it  was  listening  to  MP3s  or  watching  a 
DVD.  Sony  also  does  a  great  job  with  its  bundled  applications  for  the  TV  tuner  card. 
The  company  truly  integrates  applications  with  the  PC,  as  opposed  to  other  systems 
that  just  throw  a  bunch  of  applications  together.  Sony  understands  the  concept  of 
converging  multimedia  applications  (music,  photography 
and  television/video)  and  putting  it  into  a  desktop  PC.  In 
addition,  it  has  done  an  outstanding  job  of  merging  an 
LCD  with  PC  and  speakers  in  a  way  that  can  save  space. 

Some  caveats:  Not  much  of  a  complaint,  but  tracking 
down  all  the  ports  was  a  bit  of  a  chore. The  system  hides  a 
lot  of  the  ports  underneath  the  flat-panel  monitor,  and 
accessing  them  involves  sliding  open  a  back  panel,  if  you 
like  to  add  and  subtract  devices  to  the  PC  on  a  regular 
basis,  accessing  the  ports  becomes  more  difficult.  If  you  are 
a  set-and-forget  type,  you’ll  have  no  problem  connecting 
the  devices  and  leaving  them  alone. 

The  $2,700  price  tag  is  a  bit  steep,  but  when  you  dig  deep¬ 
er  into  the  specifications,  it’s  a  decent  value  —  remember, 
you’re  combining  a  20-inch  LCD  with  a  high-end 
computer,  speakers  and  PVR.  And  like  every  other 
all-in-one  device,  if  something  happens  to  one  of 
the  components  (such  as  bad  screen  or  disk  drive), 
the  whole  system  goes  down. 

Grade:  ★★★★★  (out  of  five) 


PC  with  a  20-inch 
can  also  be  used 


Shaw  can  be  reached  at  kshaw@nww.com. 


e  world's  largest  healthcare  providers  equip  their  employees  with  Nortel™  Applications 


Center  communication  tools  like  contact  center,  1VR,  and  unified  messaging.  Our 


integration  of  communication  and  collaboration  makes  for  highly  satisfied  patients 


and  a  highly  productive  staff.  Now  that's  one  healthy  work  environment 


norte 
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Grid  benefiting 
early  adopters 

The  chairman  of  the  Global  Grid  Forum  Mark  Linesch  last 
week  opened  the  GridWorld  conference  in  Boston 
spelling  out  the  promise  of  grid.The  new  world  is  dynamic 
vs.  static,  shared  vs.  trapped  in  silos,  virtual  vs.  dedicated, auto¬ 
mated  vs.  manual  and  oriented  around  services  vs.  applications. 

While  academia  is  still  the  foundation  for  grid,  Linesch  says 
major  grid  deployments  are  happening.  On  the  implementa¬ 
tion  continuum  from  early  deployments  to  broad  adoption,  he 
estimates  corporations  are  approaching  the  middle  stage 
where  momentum  starts  to  build. 

The  drivers  are  varied  but  include  getting  more  out  of  infra¬ 
structure  investments,  saving  money  and  the  need  for  higher 
performance.  Not  surprisingly  the  early  proponents  are  in 
industries  that  have  the  toughest  problems  to  solve,  such  as  the 
financial  and  life  science  sectors. 

Robert  Cohen,  a  fellow  at  the  Economic  Strategy  Institute, 
says  it  takes  pharmaceutical  companies  20  years  and  costs  $1 
billion  to  develop  a  new  drug,  in  part  because  80%  of  new 
drugs  go  through  clinical  trials. 

Companies  can  dramatically  reduce  costs  by  using  grids  to 
do  more  analysis  in  the  virtual  world,  with  the  goal  being  to 
conduct  trials  on  only  50%  of  the  most  promising  drugs,  and 
ultimately  maybe  only  20%.  Such  work  is  immensely  compute 
intensive,  and  grids  are  proving  to  be  the  answer. 

Cohen  estimates  that  pharma’s  adoption  of  grids  will  collec¬ 
tively  result  in  15%  productivity  gains  and  a  10%  reduction  in 
costs  from  2003  to  2010. 

Johnson  &  Johnson  is  one  company  already  reaping 
rewards.  Jeffrey  Mathers,  director  of  strategy  and  delivery  in 
Pharmaceutical  R&D  Information  Management,  says  the  grid 
his  group  deployed  last  December  now  consists  of  1 ,000  CPUs 
(half  Windows, half  Linux), supports  six  production  applica¬ 
tions,  six  regional  locations  and  four  business  units  involved  in 
everything  from  drug  discovery  to  clinical  modeling  and  simu¬ 
lation.  On  any  given  month  16,000  to  20,000  GHz  hours  of  pro¬ 
cessing  is  consumed. 

“We  have  delivered  good  performance  and  proved  grids  are 
good  for  cost  avoidance, but  what  I’m  most  proud  of  are  com¬ 
ments  from  researchers  who  say  we  couldn’t  do  the  research 
we’re  doing  today  if  tine  grid  wasn’t  there,”  Mathers  says. 

In  the  financial  sector,  Cohen  says  some  banks  have  found 
they  can  move  $500  million  from  credit  reserves  to  operating 
capital  because  grids  enable  them  to  better  forecast  credit  risk. 
Being  able  to  ran  the  hugely  complex  jobs  faster  means  they 
can  run  them  more  often  and  get  better  insight  into  current 
exposures. 

Hurdles  to  broad  adoption  include  software  licensing  restric¬ 
tions,  questions  about  security  and  cultural  issues  about  shar¬ 
ing  resources,  but  the  demonstrable  benefits  make  grid  hard  to 
ignore. 

—  John  Dix 
Editor  in  chief 
jdix@nww.com 


Onimons 


Using  Mac  to  run  Windows 

Regarding  Kevin  Tolly’s  column  “Closing  the  door 
on  Windows”  (www.networkworld.com,  DocFmder: 
9221):  Tolly  didn’t  close  the  door  on  Windows.  He 
switched  to  Mac  ...  to  run  Windows. 

If  I  suggested  to  Tolly  when  he  was  running 
Windows  to  load  all  his  volatile  stuff  into  a  virtual  PC 
partition  and  run  it  there,  he  would  have  laughed  at 
me  and  called  me  crazy  But  that  is  just  what  he  did 
on  the  Mac.  He  spent  time  and  effort  to  virtualize  his 
environment, including  going  back  to  older  versions 
of  applications. 

So  Tolly  spent  time  and  effort  to  run  Windows,  on  a 
Mac.  He  could  have  done  that  under  Linux,  or  even 
on  a  PC.  Perhaps  the  title  of  his  column  should  read: 
“Closing  the  Door  on  Windows,  but  opening  a 
Window  in  a  Mac.” 

Jason  Short 
President 
Emerald  Technology 
Mount  Dora,  Ha. 

Closing  the  door  on  Windows?  Really?  Basically 
what  I  got  from  Kevin  Tolly’s  column  is  that  now  that 
he  is  on  a  platform  that  he  really  thinks  he  likes,  he 
is  spending  most  of  his  time  figuring  out  how  in  the 
dickens  he  is  going  to  get  that  Windows  environ¬ 
ment  tucked  back  in  and  running  inside  his  new 
Apple.  He  hasn’t  walked  away  from  Windows,  he  has 
opted  for  the  wizardry  of  a  slow  emulation  model  as 
his  new  world,  which  in  the  end  will  be  a  whole 
Windows  world  framed  by  a  Mac  GUI.  That’s  hardly 
closing  the  door. 

Richard  Fink 
Owner 
Computer  Solutions 
Mill  Valley  Calif. 


In  his  column,  Kevin  Tolly  states  that  his  PowerBook 
gets  only  a  two-hour  battery  life.  He  must  be  beating 
it  to  death  constantly  or  he  has  his  energy  settings  set 
to  extreme  levels.  I  get  five  to  six  hours  of  battery  life 
on  my  iBook. 

Try  lowering  the  screen  brightness  a  few  ticks. The 
times  I’ve  gotten  six  hours  were  on  minimum  bright¬ 
ness  and  not  using  the  optical  drive  —  but  connect¬ 
ed  to  802.1  Ig  the  entire  time. 

Shawn  Milochik 
Senior  programmer  analyst 
Godiva  Chocolatier 
Reading,  Pa. 

IPv6  is  needed 

Johna  Till  Johnson’s  mea  culpa  on  her  tenfold  error 
on  the  bandwidth  cost  of  IPv6  (‘A  revised  look  at 
IPv6,”  DocFmder:  9222)  is  hardly  convincing  as  it  is 
combined  with  a  continued  adamancy  that  virtually 
no  one  needs  IPv6.  Among  the  many  points  being 
overlooked  is  that  the  greater  addressing  capabilities 
of  IPv6  create  more  opportunities  for  competition 
and  creative  service  provisioning.  Also,  network 
providers  forced  by  the  market  to  adopt  the  stan¬ 
dard  will  be  less  able  to  inflict  degradation  on  the 
services  and  traffic  flow  of  competitive  carriers  and 
thus  be  more  susceptible  to  competitive  responses. 
This  is  a  good  thing  for  innovation  and  all  users, 
although  existing  network  owners  may  believe  that 
such  a  robust  and  even  playing  field  puts  them  at  a 
disadvantage.  Congress  is  right  to  inquire  as  to  why 
IPv6  adoption  is  going  so  slowly  and  should  extend 
the  inquiry  to  include  the  network  industry 

Brian  Savin 
Greenwich,  Conn. 

E-mail  letters  to  jdix@nww.com  or  send  them  to  John  Dix,  editor  in 
chief,  Network  World,  1 1 8  Turnpike  Road,  Southborough,  MA  01 772. 
Please  include  phone  number  and  address  for  verification. 
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Dan  Minoli 


Why  VoIP  over  IPv6  will  be  better 


Second-generation  VoIP  networks  have 
achieved  a  fair  degree  of  commercial  suc¬ 
cess.  Companies  are  using  the  technology 
to  save  money  on  trunking  costs  and  for  func¬ 
tional  enhancements  such  as  mobility  presence- 
related  functions  and  unified  messaging.  VoIP 
networks  are  beginning  to  support  roaming  from 
Ethernet-based  phones  to  cellular  service.  Large 
companies  are  using  VoIP  for  contact  center  sup¬ 
port,  particularly  for  hosted  automatic  call  distri¬ 
bution  capabilities  and  virtual  contact  centers 
(where  agents  are  distributed  throughout  a  large 
geographic  area).  Carriers  are  deploying  VoIP 
services  to  generate  new  revenue  to  replace  the 
revenue  lost  from  traditional  TDM  services. 

Yet  two  fundamental  problems  preclude  the 
unconstrained  scalability  of  VoIP  to  a  large-popu¬ 
lation  base  along  with  guaranteed  “industrial- 
grade’ service  levels.The  first  problem  is  lack  of  de 
facto  intrinsic  QoS  in  many  IP  networks,  both  at 
the  carrier  and  enterprise  levels.The  second  prob¬ 
lem  relates  to  end-to-end  integrity  of  the  VoIP  sig¬ 
naling  and  bearer  paths.lt  is  difficult  to  carry  VoIP 
packets  across  firewalls,  not  only  because  of  pro¬ 
tocol  considerations,  but  also  because  of  network 
address  translation  (NAT)  issues.  Security  con¬ 


cerns,  such  as  eavesdropping  and  hacking,  are 
another  potential  problem.  Next-generation  VoIP 
networks  based  on  IPv6  are  now  on  the  drawing 
board  to  address  these  issues,  specifically  scala¬ 
bility  and  commercial-grade  reliability  These  net¬ 
works  are  based  on  IPv6. 

The  large  voice  carriers  could  claim  that  with 
TDM,  anyone  in  the  world  could  call  anyone  else, 
any  time,  anywhere,  and  get  a  good  telephonic 

It  is  only  a  matter  of  time 
before  a  transition  to  IPv6 
will  occur  worldwide. 

connection.  Currently  this  is  an  unachievable  goal 
for  the  VoIP  industry  IPv6  offers  the  potential  for 
achieving  the  scalability  reachability  end-to-end 
interworking,  QoS  and  commercial-grade  robust¬ 
ness  necessary  if  VoIP  is  to  replace  the  TDM  infra¬ 
structure  worldwide.  Specifically  IPv6  deals  with 
the  QoS  and  NAT  problems  mentioned  above. 

NAT-based  accommodation  is  a  short-term  solu¬ 
tion  to  this  anticipated  VoIP  growth;  a  better  solu¬ 
tion  is  needed.  NAT  techniques  make  the  Internet, 
applications  and  devices  more  complex,  which 


implies  a  cost  overhead.  1Pv6’s  benefits  include 
expanded  addressing;  streamlined  header  format 
and  flow  identification;  autoconfiguration  (“plug- 
and-play”);  and  more  robust  mobility  multicast, 
QoS  and  security  support. 

In  IPv4  there  are  about  4  billion  different 
addresses,  if  all  combinations  are  used.  However, 
not  all  IP  addresses  can  be  used  because  of  the 
fragmentation  of  the  address  space,  which  histori¬ 
cally  has  been  allocated  in  large  contiguous 
blocks,  hindering  optimal  utilization.  IPv6  tackles 
these  problems  by  creating  a  new  IP  address  for¬ 
mat,  so  that  the  number  of  IP  addresses  will  not 
run  out  for  several  decades  or  longer.  IPv6  has 
128-bit  addresses  and  the  number  of  available 
unique  node  addresses  is  around  3.4  x  10^. 

IPv6  is  now  gaining  momentum  globally,  with  a 
lot  of  interest  and  activity  in  Europe  and  Asia.  It 
also  is  gaining  traction  in  the  U.S.,and  it  is  only  a 
matter  of  time  before  a  transition  to  IPv6  will 
occur  worldwide. 

Minoli  is  an  adjunct  professor  in  the  Stevens 
Institute  of  Technology’s  graduate  school  and 
author  of  several  books  about  enterprise  net¬ 
working.  He  can  be  reached  at  minoli@att.net. 


YANKEE  INGENUITY 


Howard  Anderson 


Curmudgeons  of  the  world,  unite 


I  have  just  about  had  it.  Every  technical  prod¬ 
uct  I  own  has  conspired  to  make  me  feel  stu¬ 
pid  and  old. 

Yesterday  my  Nextel  phone  suddenly  started 
answering  for  me  —  my  kid  told  me  that  I  had 
inadvertently  activated  the  Auto  Answer  feature. 
I  didn’t  even  know  I  had  an  Auto  Answer  feature 
. .  .and  of  course  I  had  no  idea  how  to  turn  it  off. 
My  sleek  new  Motorola  Razr  has  an  instruction 
manual  that  is  101  pages.  1  haven’t  read  a  101- 
page  book  in  five  years. 

I  am  tired,  tired,  tired  of  products  that  are 
smarter  than  I  am  and  delight  in  proving  how 
inept  I  am.  I  want  a  whole  new  set  of  products. 
Products  for  those  of  us  over  50  —  with  simple 
instructions,  fat  buttons  and  our  own  help  line 
manned  by  people  over  50  who  will  not  talk  in 
jargon. 

Damn  it,  technology  people,  we  elder  states¬ 
men  have  all  the  money  we  have  the  time. . . . 
Why  do  you  continually  put  in  features  that  we 
will  not  use  within  our  (short)  lifetime?  When 
will  you  people  realize  that  we  are  a  major  mar¬ 
ket  unto  ourselves?  I  want  a  logo  on  products 
that  have  been  tested  by  the  AARP  that  are 
deemed  safe  for  Republicans,  that  have  Alan 
Alda  as  their  spokesman. 

When  you  put  in  all  these  features  that  we  will 
never  use,  we  feel  ripped  off  because  we  are 
paying  for  functionality  that  serves  us  no  earth¬ 
ly  good.  No,  I  am  not  going  to  record  streaming 
video  on  my  cell  phone.  No,  I  am  not  going  to 
record  my  favorite  100  songs  and  no,  I  am  not 


going  to  be  shooting  the  remake  of  “Apocalypse 
Now”  on  my  iPod  nano.  Just  leave  us  alone  with 
our  dotage  and  some  technology  that  actually 
works. 

Years  ago,  I  ran  a  major  conference  at  the  Taj 
Mahal  hotel  when  it  first  opened.  Donald  Trump 
comp’d  me  with  a  beautiful  room  with  a  sunken 
bathtub  and  mirrors  on  the  ceiling.  My  fantasy 
—  except  my  eyes  weren’t  good  enough  to  see 
what  was  going  on.  Instruction  manuals  are  writ¬ 
ten  in  four-point  type  so  only  an  eagle  could 
read  them. My  memory  isn’t  so  good, so  I  have  to 

We  elder  statesmen  have  all 
the  money,  we  have  the  time. 
. .  .When  will  you  people 
realize  that  we  are  a  major 
market  unto  ourselves? 

be  retrained  every  morning  on  the  features  I 
learned  yesterday  that  I  will  never  use. 

1  have  a  home  entertainment  system  so  com¬ 
plex  that  I  have  to  have  the  guy  who  installed  it 
over  every  month  to  show  me  how  to  make  it 
work  —  at  $80  an  hour.  I  have  remotes  for  my 
remotes.  And  if  someone  inadvertently  hits  the 
wrong  button,  I  am  infinitely  screwed,  as  I  am  8 
1/2  miles  out  of  town  on  a  dirt  road.You  try  and 
communicate  with  DirecTV  which  seems  to 
have  its  service  desk  on  Mars.  How  am  I  sup¬ 
posed  to  know  which  satellite  I  am  honed  on? 


And  stop  sneering  at  me! 

My  computer  mocks  me.  My  printer  conspires 
to  have  paper  jams  when  it  meets  with  all  my 
other  high-tech  toys  and  decides  that  I  haven’t 
had  enough  pain.  Did  I  mention  my  car?  It  now 
has  Bluetooth  and  sometimes  for  no  apparent 
reason  refuses  to  let  me  open  the  door.  Or  sud¬ 
denly  locks  up  the  instrument  panel  when  I  turn 
on  satellite  radio. 

There  is  a  conspiracy  out  there  and  I  am  not 
taking  this  lightly.  My  watch,  which  tells  me  the 
depth  I  am  diving,  suddenly  thinks  I  want  to 
know  this  information  in  German.  The  GPS  in 
my  car  seems  to  take  perverse  glee  in  calling  me 
names  (“Turn  immediately  left,  Howard,  you 
dummkopf!”) 

I  put  in  an  invisible  fence  for  my  dog  and  now 
my  car  refuses  to  leave  the  yard.  It’s  like  there  is 
a  union  job  shop  action  where  the  devices  own 
me  instead  of  my  owning  them.  My  iPod  has 
been  sent  back  to  Apple  so  often  it  thinks  Steve 
Jobs’  home  is  its  home. 

I  am  giving  every  one  of  my  toys  final  notice: 
Shape  up  and  stop  this  torture!  I  am  mad  as  hell 
and  I  am  not  going  to  take  it  anymore. 

Anderson  is  the  founder  of  The  Yankee  Group 
and  YankeeTek,  and  a  co-founder  of  Battery 
Ventures.  He  lectures  on  technology  at  the 
Massachusetts  Institute  of  Technology  and 
speaks  on  technology  subjects  at  meetings 
across  the  country.  He  can  be  reached  at  hander 
son  @yankeetek.  com. 
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Definition: 

1.  Service-Oriented 
Architecture  SOA  is 
a  software  develop¬ 
ment  methodology 
that  encourages 
developers  to  share 
and  reuse  code. 

2.  SOA  refers  to  any 
distributed  applica¬ 
tion  environment  that 
emphasizes  the  fol¬ 
lowing  service-devel¬ 
opment  practices: 
service  virtualization, 
service  reuse  and  ser¬ 
vice  brokering. 

Benefits: 

1.  SOA  best  prac¬ 
tices  help  compa¬ 
nies  create  more 
flexible,  adaptable  IT 
organizations. 

2.  Specific  SOA  bene¬ 
fits  include  faster 
application  develop¬ 
ment,  condsolidated 
and  increased  busi¬ 
ness-process  consis¬ 
tency  across  applica¬ 
tions  that  share  com¬ 
mon  services. 

Kobielus  says: 

"Enterprises  can 
implement  SOA 
without  service- 
level  management, 
but  they  would  be 
foolish  to  do  so 
for  long." 
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We  were  able  to 
implement  several 
major  business  initia¬ 
tives  within  extremely 
short  timelines 
because  of  our  ability 
to  reuse  existing 
functionality.” 

Transportation  Services 
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How  service- 
oriented  archi 
tecture  can 
transform 
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your 
business 
processes. 


ervice-oriented  architec¬ 
ture  is  an  inescapable  IT- 
?  industry  buzzphrase.  Its  also 
a  sprawling,  eye-glazing  abstrac¬ 
tion  that  means  many  things  to 
many  people.  In  this  Technology 
Insider,  SOA  guru  James  Kobielus 
analyzes  the  ROI  of  SOAs  (page 
56),  defines  key  SOA  concepts 
(page  58)  and  describes  the  SOA 
infrastructure  (page  62).  Go  online 
for  stories  on  what  needs  to  happen 
for  SOAs  to  take  off  (www.network 
world.com,  DocFinder:  9929). 
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_THE  INVASION 


_DAY  3:  The  servers  have  taken  over.  We  bought 
so  many  affordable  ones  we  can’t  afford  the  people 
to  manage  them.  How  far  does  this  sprawl  spread? 
Have  they  taken  over  the  city?  The  planet? 

Ma,  have  they  gotten  to  you,  too?  (Must  type 
very,  very  quietly.  They’re  L-I-S-T-E-N-I-N-G.) 
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TECHNOLOGY  BSIDER  SOA 


The  ROI  of  SOA 

The  more  you  reuse,  the  more  you  save. 

BY  JAMES  KOBIELUS 

Fundamentally,  SOA  is  a  development  methodology 
that  encourages  sharing  of  remotely  invocable 
application  functions  throughout  networks.  Its  a 
way  of  doing  more  with  less,  where  applications  can  be 
built  more  quickly  and  incrementally,  with  fewer  lines 
of  original  code. 


The  upside  of  SOA  is  that  the  marginal 
cost  of  building  new  applications  will 
continue  to  drop  as  the  service-reuse 
rate  climbs.  The  catch  is  that  there’s  a 
significant  ramp-up  cost,  because 
adopting  an  SOA  means  you’re  going  to 
need  to  rethink  many  of  your  tradition¬ 
al  approaches  to  application  modeling, 
development,  integration,  deployment 
and  management. 

Kobielus  says: 

“SOA  has,  in  industry  discussions, 
been  elevated  from  a  mere 
approach  to  something  resembling 
a  religion,  it  is  often  portrayed  as 
an  all-pervading  panacea,  a  golden 
force  field  that  encompasses  all 
good  programming  practices  from 
Babbage  to  the  present.” 

“1  can  guarantee  there’s  a  cheaper 
way  to  build  your  next  product,  but 
there’s  no  cheaper  way  to  build  your 
next  20  products,”  says  Christopher 
Crowhurst,  vice  president  and  princi¬ 
pal  architect  at  Thomson  Learning. 

Forrester  Research  analysts  Ken  Voll- 
mer  and  Mike  Gilpin  report  that  SOA- 
based  development  can  be  twice  as 
much  as  traditional  approaches  when 
viewed  solely  with  respect  of  building  a 
particular  application  component. 

But  when  that  application  component 
is  reused  over  and  over,  SOA  becomes 
more  than  30%  more  cost  effective  than 
traditional  development  approaches. 

Cost  savings 

Many  of  the  savings  from  SOA  stem 
from  its  ability  to  consolidate  silos  of 
redundant  application  functionality  and 
data  throughout  organizations. 

Fewer  software  licenses  and  servers 
translate  into  cost  savings  in  capital  and 
operating  budgets.  Fewer  redundant 
software  components  translate  into  less 
need  for  redundant  programming 


groups.  Application  consolidation  onto 
fewer  platforms  reduces  software  life- 
cycle  costs,  which  Gartner  says  can  be 
six  times  greater  than  license  costs. 

However,  SOA  requires  a  significant  up¬ 
front  investment.  Standard  Life  Group, 
an  Edinburgh,  Scotland,  insurance  com¬ 
pany,  maintains  three  SOA-implementing 
development  groups  with  about  500  peo¬ 
ple,  about  half  of  whom  are  delivering 
SOA  services  and  applications.  A  staff  of 
seven  manages  their  SOA-enabling  dis¬ 
tributed-application  infrastructure. 

On  the  plus  side,  “we’ve  saved  over 
£2.8  million  in  development  costs  over 
the  past  three  years  based  on  reuse  of 
existing  functionality  within  the  service 
catalog,”  says  Derek  Ireland,  group  tech 
solutions  manager. 

The  company  currently  has  around  300 
reusable  services  in  its  catalog.  More 
than  half  of  those  services  have  been  re¬ 
used  at  least  once  and  there  have  been  a 
total  of  361  instances  of  reuse.  In  addi¬ 
tion,  more  than  40%  of  the  company’s 
back-end  transactions  are  initiated 
through  its  SOA-based  environment. 

Other  companies  report  hard  and  soft 
monetary  paybacks  from  SOA.  “We’ve 
seen  huge  savings  in  Oracle  [database] 
licenses,”  says  Jayson  Minard,  CIO  of 
Abebooks  in  Victoria,  British  Columbia, 
because  of  the  server  consolidation 
that  has  accompanied  their  SOA  push. 
At  the  same  time,  he  says,  “we’ve  also 
seen  savings  on  the  team  side,  due  to 
having  more  development  staff  band¬ 
width  for  new  projects.  Development 
group  efficiency  is  going  up.” 

Another  cost  advantage  of  SOA  is 
that  by  stressing  platform-agnostic 
service  virtualization  companies  can 
choose  the  most  cost-effective,  best- 
of-breed  application  components  for 
particular  functions. 

“With  SOA,  you  can  go  the  vendor’s 
SOA  route,”  Minard  says. 

“Or  you  can  take  the  approach  that 


we  did.  First,  we  identified  the  features 
and  benefits  we  were  looking  for,  such 
as  flexibility,  decoupling,  asynchronous 
communications  and  service  boundary 
partitioning.  Then  we  identified  best- 
of-breed  products  that  addressed 
those  requirements.  We  evaluated  14 
products,  including  commercial  offer¬ 
ings  and  open  source  packages.  We 
tested  interoperability  among  those 
products,  and  eliminated  the  ones 
where  the  vendors  differed  from  us  in 
their  philosophical  approach  to  SOA. 
In  that  way,  we’ve  steered  clear  of 
vendor  lock-in,”  he  adds. 

Speed  daemons 

Speedier  SOA-based  application  devel¬ 
opment  can  also  contribute  to  a  compa¬ 
ny's  financial  well  being  and  competitive 
agility.  "Applications  that  used  to  take 
two  weeks  to  develop  now  take  two 
days,"  Minard  says. 

Faster  development  allows  companies 
to  respond  more  flexibly  to  new  com¬ 
petitive  challenges.  TSYS  Prepaid  is  a 


hosted  service  provider  that  processes 
prepaid  debit  cards  on  behalf  of  finan¬ 
cial  institutions.  Its  SOA-based  applica¬ 
tions  are  the  basis  for  revenue-produc¬ 
ing  services.  “Accelerated  develop¬ 
ment  allows  us  to  recognize  revenue 
more  quickly,”  says  Carl  Ansley,  the 
company’s  CTO. 

Soft  savings 

Then  there  are  the  savings  that  are  dif¬ 
ficult  to  quantify.  How  can  you  put  a 
number  on  improved  business  adapt¬ 
ability  and  agility?  Or  on  improvements 
in  application  consistency? 

Or  on  reductions  in  the  risk  to  inter¬ 
operability  when  you  make  changes  to 
application  code  that’s  been  virtual¬ 
ized,  abstracted  and  loosely  coupled  in 
keeping  with  SOA  principles?  Or  en¬ 
hancements  to  application  usability, 
scalability  and  performance  that  come 
from  reliance  on  shared  services  that 
have  been  built  and  optimized  by  devel¬ 
opment  centers  of  competence  within 
your  organization? 


“We’ve  saved  over  £2.8 
million  in  development 
costs  over  the  past  three 
years  based  on  reuse  of 
existing  functionality  with¬ 
in  the  service  catalog.” 

Derek  Ireland,  group  let  li  solutions  mdnagci 
Standard  Lila  (IriHtp.SCnilcimi 


_DAY  30:  It’s  gotten  worse.  I’m  trapped  in  a  maze 
of  our  own  creation.  Oh,  the  irony.  I  need  an 
answer.  (P.S.  I’m  frightened.) 

_DAY  31:  I  need  IBM  Systems  with  virtualization 
technology.  Helps  you  manage  your  servers  and  storage, 
each  from  a  single  view,  so  you  can  deploy  resources 
*  on  the  fly.  Lets  you  scale  up  and  out  quickly. 


I  will  achieve  control.  I  will  be  a  big  hero. 

I  Tho\/  uiri  1  1  rnl  1  mo  NoH  MoH  Thninn-i  nn  n-f  C! i  mnl  S  r i  4-\/ 
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Three 

steps  to 

S OA  nirvana 

BY  JAMES  KOBIELUS 

eres  a  primer  on  the  three 
core  concepts  behind  service- 
oriented  architectures: 

1.  Service  virtualization 

A  service  is  a  reusable  chunk  of  code  that  can  be 
invoked  by  other  developers  through  a  published 
metadata  interface,  known  as  a  service  contract. 

“SOA  requires  that  you  stay  at  a  high  level  in  defining 
these  reusable  business  services,  rather  than  drill 
down  too  quickly  into  application  code,”  says 
Christopher  Crowhurst,  vice  president  and  principal 
architect  at  Thomson  Learning,  a  Stamford,  Conn., 
business  unit  of  Thomson  Corp.  that  provides  technol¬ 
ogy  and  assessment  services  worldwide. 

Under  SOA,  each  service  should  have  a  recognizable 
business  function  that  plays  a  clear  role  in  multiple 
applications,  adds  Derek  Ireland,  group  tech  solutions 
manager  at  Standard  Life  Group,  an  Edinburgh, 
Scotland,  insurance  company.  “Examples  of  these  re¬ 
usable  business  services  in  our  SOA  include  ‘provide 
pension  valuation,’  ‘verify  identity,’  ‘provide  bank  de¬ 
tails,’  ‘maintain  address’  and  ‘produce  statement.’” 

Currently,  we  have  around  300  business  services 
in  our  SOA  service  catalog,”  Ireland  adds.  “These 
services  are  high-level  business  functions  that 
abstract  away  from  the  underlying  complexities  of 
our  principal  platforms:  WebSphere  Application 
Server,  WebSphere  Business  Integrator,  WebSphere 
MQ  IMS  and  .Net.  Our  SOA  software  framework 
allows  the  development  teams  to  concentrate  on 
the  business  aspects  of  the  application  under 
development,”  he  says. 

Another  core  SOA  tenet  is  that  services  should 
have  stable,  well-bounded  sets  of  functionality,  so  a 
change  in  the  service’s  underlying  implementation 
won’t  disrupt  interoperability  with  existing  con¬ 
sumers  of  that  service. 

“SOA  is  an  approach  for  defining  clear  boundaries 
between  business  and  technical  services  that  need 
to  be  decoupled,”  says  Jayson  Minard,  CIO  at 
Abebooks,  an  online  book  marketplace  in  Victoria, 
British  Columbia. 

Typically,  stable  service  contracts  are  coarsely 
detailed,  which  means  they  describe  the  interface  to 
an  entire  business  process  or  a  substantial  sub¬ 
process,  rather  than  to  the  details  of  a  particular  plat¬ 
form’s  object  model,  classes  and  APIs. 

But  users  are  taking  whatever  approach  best  meets 
their  particular  needs.  For  example,  Abebooks’  SOA 
is  based  on  the  need  to  define  fine-grained  business 


services  that  correspond  to  particular  business-to- 
business  technical-integration  connections. 

Abebooks  uses  SOA  practices  to  de-couple  the  inte¬ 
gration  logic  through  which  its  Web  sites  connect 
with  business  partners. 

More  than  13,000  booksellers  from  48  countries 
list  their  books  on  several  Abebooks  sites,  and 
major  online  booksellers,  such  as  Amazon  and 
Barnes  &  Noble,  have  outsourced  their  used-book 
operations  to  the  firm. 

“We  have  a  lot  of  legacy  Java  code,  which  we 
need  to  continually  tweak  to  address  the  data 
translation  and  other  functions  specific  to  various 
partner  integrations,”  Minard  says.  “Without  clear 
boundaries  among  various  code  segments  associ¬ 
ated  with  partner  integration,  we  would  risk  dis¬ 
rupting  global  interoperability  with  all  of  our  part¬ 
ners  every  time  we  changed,  say,  a  data-translation 
routine  for  one  partner.” 

Maja  Tibbling,  application  architect  with  Con-Way 
Transportation  Services  in  Portland,  Ore.,  adds, 
“Services  can  be  fine-grained,  such  as  a  logging 
service,  or  coarse-grained,  such  as  those  services 
that  contain  an  entire  business  process.  Services 
should  be  defined  at  whatever  granularity  best  pro¬ 
motes  their  reuse.” 

Con-Way’s  ongoing  SOA  initiative  began  in  the  late 
1990s  as  a  way  to  implement  component-based 
development  of  mainframe  applications.  “Since 
then,  we  have  successfully  ventured  into  the  [Java 
2  Platform  Enterprise  Edition]  world  and  have  de¬ 
ployed  many  business  applications  in  the  middle 
tier  with  Web-based  front  ends.  So  the  next  step 
[for  SOA]  was  consuming  the  same  back-end 
shared  services  through  vendor-provided  Java 
proxies  to  the  mainframe.” 

Con-Way  also  has  implemented  SOA-based  compo¬ 
nent  partitioning  on  many  midtier  J2EE-based  and 
Web-accessible  applications. 


How  does  it  work? 

Under  SOA  methodology,  developers  wril 
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Some  corporate  IT  groups  take  coarse-grained 
SOA  to  its  logical  extreme.  “SOA  for  us  is  mostly 
providing  a  rational  framework  for  distributed 
server  connectivity  between  distinct  application 
servers,”  says  Adam  Blum,  director  of  server  engi¬ 
neering  at  Good  Technology,  a  Santa  Clara,  Calif., 
provider  of  wireless  products. 

“For  example,  our  e-mail  servers  behind  the  cus¬ 
tomer  company  firewall,  which  connect  to  Microsoft 
Exchange  and  forward  e-mail,  need  to  connect  to  our 
hosted  router  for  forwarding  traffic  and  to  our  Web 
store  to  validate  purchased  licenses.  We  do  this 
through  a  set  of  XML  messages.  An  important  aspect  of 
SOA  for  us  is  expressing  common  abstractions  [users, 


SOA  and  Web  services: 

Some  argue  that  a  true  SOA  implementation 
requires  the  full  Web  services  stack,  including 
Web  Services  Description  Language 
(WSDL),  Simple  Object  Access  Protocol 
(SOAP),  Universal  Description,  Discovery 
and  Integration  (UDDI). 

But  users  today  are  implementing  SOAs 
under  various  platform  and  middleware  envi¬ 
ronments,  programming  languages  and  devel¬ 
opment  tools.  However,  Web  services  is  the 
preferred  environment  for  SOA. 


customer  companies,  messages,  licenses,  server  infor¬ 
mation]  in  common  ways.” 

2.  Service  reuse:  The  big  payoff 

Service  reuse  is  where  SOA  pays  off.  Companies 
that  make  the  most  of  SOAs  train,  encourage  and 
reward  programmers  to  reuse  existing  services  — 
no  matter  who  developed  them  —  to  the  maximum 
extent  possible. 

In  an  SOA  nirvana,  programmers  would  write  as  little 
new  code  as  possible  when  constructing  new  applica¬ 
tions,  and  the  only  new  code  would  simply  orchestrate 
new  interaction  patterns  among  existing  services. 

Greater  service  reuse  translates  into  lower  costs 
and  accelerated  development  cycles.  “In  2004,  we 
were  able  to  implement  several  major  business  initia¬ 
tives  within  extremely  short  timelines,  because  of  our 
ability  to  reuse  existing  functionality  and  to  protect 
existing  consumers  from  the  impact  of  changes  to 
existing  functionality,”  Tibbling  says.  “Our  core  busi¬ 
ness  components  such  as  Customer  and  Shipment 
offer  services  that  every  single  application  ends  up 
using.  This  has  allowed  greatly  enhanced  time  to  mar¬ 
ket  for  subsequent  projects.” 

In  practice,  service  reuse  depends  on  middleware 
that  allows  any  service  to  interoperate  with  any  other 
service  over  networks.  Increasingly,  Web  services  envi¬ 
ronments  are  the  middleware  fabrics  of  choice  for 
SOA,  leveraging  WSDL,  SOAP  and  other  WS-*  stan¬ 
dards.  But  in  SOA  implementations,  services  are  being 
shared,  reused,  orchestrated  and  invoked  over  a  broad 
range  of  legacy  middleware  environments  that  interop¬ 
erate  in  various  ways. 

“We  chose  XML,  not  necessarily  Web  services  [for 
exposing  application  interfaces  across  our  SOA  envi¬ 
ronment],”  Thomson  Learning's  Crowhurst  says.  “We 
transfer  XML  over  HTTP,  and  XML  over  file  transfer. 
We  also  do  XML  over  message  queuing  transports  for 
abstraction  of  application  interfaces.” 

Con-Way  Transportation  runs  SOA  over  a  heteroge¬ 
neous,  evolving  middleware  environment  in  which 
Web  services  are  still  just  a  bit  player.  “We  are  using 
Tibco  BusinessWorks  to  orchestrate  asynchronous 
business  processes  in  near  real-time  using  [J2EE] 
ServiceLocator  [patterns],  but  invoked  from  the  inte¬ 
gration  infrastructure,”  Tibbling  says. 

Con-Way’s  XML  Web  services  implementation  is 
growing.  Nevertheless,  it  also  is  given  J2EE  a  growing 
role  in  its  SOA.  “Java  Message  Service  is  being  used 
more  and  more,”  Tibbling  says. 

“As  we  upgrade  our  J2EE  environment,  we  anticipate 
using  MessageBeans  as  process  triggers  into  the  inte- 

See  SOA,  page  60 


Control  starts  with  IBM  Systems. 


Control  the  sprawl  by  physically  consolidating  your 
servers  and  storage,  putting  more  power  in  less  space. 

Control  complexity  by  pooling  systems  and  managing 
them  from  a  central  location.  Reducing  your  number  of 
disconnected  servers  and  storage. 

Control  costs  with  servers  that  partition  virtually  so 
you  can  do  more  with  less  on  a  single  system. 

i 

Control  time  with  systems  and  software  designed 
to  dynamically  manage  workloads  and  data  storage, 
helping  to  optimize  resources. 

Control  your  IT  destiny  with  IBM  Systems  -  a  range 
of  innovative  servers  and  storage  that  have  been  designed 
to  make  your  infrastructure  and  your  life  simpler. 


IBM.COM/TAKEBACKCONTROL 


Server  and  storage  products  may  require  purchase  of  more  than  one  product  or  feature  to  enable  the  virtualization  capabilities.  These  products  or  features  may  incur  an  additional  charge.  IBM  and 
the  IBM  logo  are  trademarks  or  registered  trademarks  of  International  Business  Machines  Corporation  in  the  United  States  and/or  other  countries.  ©2005  IBM  Corporation.  All  rights  reserved. 
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continued  from  page  58 

gration  layer,'’  she  adds. 

Con-Way  isn’t  the  only  SOA 
shop  that  has  limited  its  use  of 
Web  services  primarily  to  sup¬ 
port  external  interoperability. 
“We’ve  selected  IBM  Web¬ 


Sphere  as  our  primary  appli¬ 
cation  server,”  Standard  Life’s 
Ireland  says.  “We  also  use  Java 
as  our  principal  development 
language,  IBM  WebSphere  MQ 
Integrator  as  our  [message-ori¬ 
ented  middleware]  integration 
platform,  and  XML  as  the 
markup  syntax  for  all  interop¬ 


erability  interfaces.  .  .  .  We 
don’t  see  the  advantage  of 
using  Web  services  and  SOAP 
[in  place  of  WebSphere  MQ] 
for  integration.  But  we  will  use 
SOAP  when  it’s  appropriate, 
such  as  for  B2B  integration.” 

3.  Service  brokering:  Ads  pay 


Service  brokering  encour¬ 
ages  reuse  by  allowing  devel¬ 
opers  to  “advertise”  their  pro¬ 
grams’  service  contracts  and 
other  descriptive  metadata  in 
a  shared  online  registry, 
repository  or  catalog. 

Service  brokering  infra¬ 
structures  take  many  forms 


Do  you  worry  about... 


bringing  new  Network  IT  products  to  market? 
reaching  Network/IT  and  Corporate  Managers? 
accelerating  your  sales  cycle? 

getting  your  company's  message  in  front  of  a  powerful  audience  of  Network  IT  buyers? 

Stop  worrying... 

when  you  sponsor  a  Network  World  Technology  Tour  and  Expo.  These  dynamic  live, 
multi-city  events  will  bring  you  face-to-face  with  the  Network  World  community  —  the 
architects,  strategists,  decision-makers  and  buyers  for  today's  enterprise  networks. 

Network  World  is  now  accepting  sponsorship  bookings  for  2005  Technology  Tours  and 
Expos.  Sponsorships  are  limited  to  guarantee  a  dynamic  experience  for  both  sponsors 
and  attendees  so  act  now. 

Contact  Andrea  D'Amato,  National  Sales  Director,  Events  and  Executive  Forums,  at 

800-622-1108,  Ext.  6520  or  adamato@nww.com 
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techimo^By  tour  and  expo 


March 

|  Wireless  and  Mobility 

March 

|  Network  Management/IT  Automation 

April 

j  Remote  Office  Networking 

April 

j  WAN  Optimization 

June 

j  Voice  over  IP/Convergence 

June 

j  Extended:  Wireless  and  Mobility 

July 

|  SMB 

Sept 

j  Security 

Sept 

j  Extended:  Voice  over  IP/Convergence 

Nov/Dec 

j  IT  Road  Map:  2006 

To  attend  a  Network  World  Technology  Tour  and  Expo  free,  register  at  www.networkworld.com/events 


and  are  often  specific  to  par¬ 
ticular  middleware  or  plat¬ 
form  environments.  The  UDDI 
standard  defines  a  service¬ 
brokering  environment  for 
Web  services. 

The  UDDI  standard  is  part  of 
the  emerging  world  of  Web  ser¬ 
vices.  Other  common  service¬ 
brokering  environments  in¬ 
clude  Common  Object  Request 
Broker  Architecture  Naming 
Service,  Distributed  Computing 
Environment  Cell  Directory 
Service,  Windows  NT  Registry, 
Java  Remote  Method  Invo¬ 
cation  Registry  and  Electronic 
Business  XML  repositories. 

If  they  wish,  companies  also 
can  deploy  a  database  man¬ 
agement  system  as  a  service¬ 
brokering  node  for  their  SOA. 

“Our  SOA  environment  in¬ 
cludes  a  runtime  business 
service  directory  that  runs  on 
IBM  Universal  Database/DB2 
on  a  mainframe,”  Ireland  says. 

Abebooks  has  implemented  a 
hybrid  UDDI/LDAP  registry 
architecture,  according  to  com¬ 
pany  CIO  Minard.  “We’ve  imple¬ 
mented  an  open  source  UDDI 
registry  outside  our  firewall  to 
publish  external  service  inter¬ 
faces  that  our  partners  can  use 
to  connect  to  our  services.  The 
external  UDDI  registry  uses 
LDAP  to  do  lookups  of  the  mas¬ 
ter  service  directory  that  sits 
behind  our  firewall.” 

Platform-agnosticism  is  the 
essence  of  true  SOA.  Com¬ 
panies  should  take  care  not  to 
introduce  specific  dependen¬ 
cies  on  WSDL,  SOAP,  UDDI  or 
any  other  Web  services  stan¬ 
dards  or  specifications.  SOA 
implementers  should  treat  Web 
services  —  and  any  other 
development,  interoperability 
and  operating  environment  — 
as  implementation  details. 

Kobielus  says: 

“SOA  is  clearly  a  work  in 
progress.  Actually,  SOA  is  a 
target  state  that  many 
organizations  may 
approach  but  never  fully 
attain.  It’s  all  about 
achieving  maximum  reuse 
and  minimum  redundancy 
of  services  throughout 
complex,  muitiplatform  dis¬ 
tributed  environments 

Kobielus  is  a  senior  technical 
systems  advisor  at  EXOstar.  He 
can  be  reached  at  fames  _ 
kobielus@hotmail.com 
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It's  1  pm.  Do  you  know  your  network  has  an  open-door  policy 


Get  wireless  productivity  . 
and  real  security  with 
the  SonicWALL  Secure 
Wireless  Solution 
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Keep  unauthorized  users  off  your  network. 

Sure,  your  wireless  network  makes  you  more  productive,  but  the  security  loopholes  are  huge.  And  secure 
wireless  networks  are  expensive  and  complicated,  right?  Not  with  SonicWALL®  We  make  secure  wireless  simple, 
reliable  and  affordable.  So  businesses  like  yours  can  concentrate  on  what  they  do  best— business. 

Our  Secure  Wireless  Solution  provides  real,  enterprise-class  protection  from  unwanted  intruders,  viruses  and  more 
in  one  affordable,  powerful  package.  Complete  with  Gateway  Anti-Virus,  Anti-Spyware  and  Intrusion  Prevention, 
the  SonicWALL  PRO  Series  with  SonicPoints  for  larger  organizations  and  TZ  Series  for  smaller  locations  make 
it  easy  to  add  secure  wireless  to  your  network.  Whether  you're  starting  from  scratch,  or  adding  to  your  wired 
network,  SonicWALL  has  the  answer. 

Slam  the  door  on  uninvited  wireless  snoops.  Get  the  full  story  on  the  SonicWALL  Secure  Wireless  Solution 
at  www.sonicwall.com/home/dws.asp  or  call  us  at  +1  888.557.6642. 


SonicPoint 


::::: 

PRO  Series 


The  worldwide  leader  in  Unified  Threat  Management  is  hiring.  Visit  www.sonicwall.com  for  details. 


Around  the  clock,  around  the  world,  and  around  the  Web- 

SonicWALL  is  there  for  you. 


Gateway  Anti-Virus  Anti-Spyware 
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SOA  surveys  come  up  with  mixed  results. 


BY  JAMES  KOBIELUS 


SOA  is  still  a  fuzzy  concept  to  many  corporate  IT  pro¬ 
fessionals,  and  it  sprawls,  in  many  peoples  minds, 
across  a  wide  range  of  loosely  related  technologies 
and  approaches. 


According  to  a  recent  IDG  Research 
Services  Group  survey,  IT  professionals 
are  almost  evenly  split  between  people 
who  claim  some  familiarity  with  SOA 
(52%)  and  those  who  admit  they  haven’t 
a  clue  (48%).  Likewise,  the  split  was 
almost  even  between  those  respondents 
who  reported  strong  confidence  in 
SOA’s  long-term  potential  (55%)  and 
those  whose  confidence  was  lacking  or 
lackluster  (45%). 

IDG  asked  that  same  group  of  respon¬ 
dents  to  associate  various  phrases 
with  SOA.  The  respondents  ranked  the 
most  accurate  SOA  descriptor  — 
“reusable  applications”  —  fifth  among 
the  options  given. 

Respondents  ranked  “software  as  a 
service,”  “enterprise  application  inte¬ 
gration,”  “Web  services  registries/re¬ 
positories,”  and  “frequent  use  of  Web 
services”  higher,  even  though  those 


Tips  for  creating  an  SOA 
road  map 

•  Gain  a  solid  commitment  from 
senior  IT  and  business  managers, 
based  on  such  business  benefits 
as  accelerated  development, 
reduced  cost  and  greater  busi¬ 
ness  agility. 

•  Provide  developers  with  the 
training,  tools,  guidelines  and 
incentives  necessary  to  get  them 
thinking  in  SOA  terms,  and  to 
discourage  development  of  one- 
off  and  non-modular  applications. 

•  Reorganize  IT  governance 
processes  aimed  at  enforcing 
organizationwide  adherence  to 
SOA  best  practices. 

•  An  enterprise  SOA  road  map 
should  incorporate  the  requisite 
philosophy,,  culture,  practices, 
tools  and  infrastructure. The 
more  of  these'  road  map  compo¬ 
nents  you've  established  in  your 

..  organization,  the  closer  you  are 
’  to  realizing  the  fulfROI  on  your 

'  commitment  to  SOA.  • 
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•  y,\\- - 


phrases  don’t  directly  articulate  SOA’s 
core  meaning. 

If  popular  understanding  of  SOA  con¬ 
cepts  is  fuzzy,  what’s  even  fuzzier  is 
any  reliable  data  on  who  exactly  is 
implementing  SOA,  with  what  degree 
of  commitment,  and  at  what  level  in 
the  organization. 

In  that  same  IDG  study,  28%  of  respon¬ 
dents  stated  that  their  companies  are 
implementing  SOA,  with  slightly  less 
than  half  of  those  SOA  implementers 
merely  conducting  pilot  projects.  Of 
those  respondents  who  are  considering 
SOA  but  don’t  currently  have  pilot  pro¬ 
jects,  IDG  found  that  only  22%  are 
actively  investigating  SOA-based  solu¬ 
tions  over  the  coming  year. 

However,  a  recent  Forrester  Re¬ 
search  survey  of  large  North  Ameri¬ 
can  companies  reported  that  more 
than  70%  of  respondents  have 
already  implemented  SOA.  Forrester 
analysts  say  that  by  the  end  of  2005, 
51%  of  midsize  companies  and  46%  of 
small  businesses  will  have  adopted 
SOA,  as  well. 

The  problem  is  that  the  surveys 
don’t  get  at  how  many  of  the  people 
responding  to  these  surveys  are  clear 
on  precisely  what  they  mean  by  SOA, 
and  it's  not  clear  how  far  along  the 
respondent  is  on  the  long  road  to  SOA. 

Without  a  doubt,  realizing  SOA’s  full 
ROI  will  be  impossible  without  the 
appropriate  technical  infrastructure 
and  organizational  commitment,  oper¬ 
ating  hand  in  hand. 


nww.com 

Go  online  for  these  stories  on  what 
needs  to  be  done  to  make  SOA  a  reality 

•  SOA  standards  remain  a  work  in  progress. 

•  Web  services  standards  need  to  mature  before 
SOA  can  really  take  off. 

•  Vendors  step  up  to  the  SOA  plate. 
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The  SOA  tool  kit 


The  principal  layers  of  an  SOA-enabling  infrastructure  are  service 
brokers,  orchestration  engines,  message-oriented  middleware  envi¬ 
ronments  and  service-level  management  tools. 


Brokering  infrastructures 
y—*  encourage  reuse  by  allow¬ 
ing  developers  to  “advertise” 
their  programs’  service  inter¬ 
faces  in  a  shared  online  registry,  repos¬ 
itory  or  catalog. 

UDDI  is  the  Web  services  standard, 
but  companies  have  implemented  ser¬ 
vice-brokering  infrastructures  on  other 
platforms,  such  as  database  manage¬ 
ment  systems. 

Orchestration  engines 
W*  encourage  reuse  by  allow¬ 
ing  developers  to  build  new 
services  through  workflow  defi¬ 
nitions  that  connect  preexisting  ser¬ 
vices.  Developers  often  use  graphi¬ 
cal  process-definition  tools  that 
allow  them  to  specify  orchestration 
tasks,  dependencies,  and  routing  and 
processing  steps  with  flowchart 
icons.  This  approach  also  is  called 
model-driven  development.  Once 
defined,  these  visual  process  models 
might  be  compiled  into  reusable  rule 
definitions  that  control  the  execution 
of  multistep  interaction  flows,  such 
as  those  that  involve  complex  trans¬ 
formation  and  routing  rules,  across 
heterogeneous  platforms. 

*  MOM  environments  en- 
courage  reuse  by  providing 
guaranteed-delivery,  event- 
notification  and  publish-and-sub- 
scribe  protocols  that  bind  heteroge¬ 
neous  application  endpoints  into  an 
enterprise  service  bus. 

Abebooks  has  deployed  Sonic 
Software's  MOM  products  as  the  back¬ 
plane  for  its  SOA  environment.  “We 
deploy  Sonic  MQ  everywhere  in  our 
intranet,”  says  Abebooks'  Jayson 
Minard.  “Sonic  MQ  supports  both  asyn¬ 
chronous  and  synchronous  calls 
between  service  endpoints  and  pro¬ 
vides  pub/sub,  message  queuing  and 
event  notification  services.  At  the  edges 
of  our  intranet,  we  use  Sonic  ESB  to 
wrap  shared  services  with  Web  ser¬ 


vices  interfaces  so  that  they  can  be 
called  by  our  external  trading  partners.” 
j*  Service-level  manage- 
ment  infrastructures  en- 
courage  reuse  by  helping 
companies  monitor,  optimize, 
control  and  integrate  their  distributed 
application  environments.  A  nore 
common  term  for  this  functionality  is 
Web  services  management  (WSM) 
tools.  WSM  infrastructures  help  com¬ 
panies  ensure  the  performance,  relis 
bility,  availability,  operational  man¬ 
agement,  life-cycle  management  and 
security  of  end-to-end  Web  services 
within  an  SOA  environment.  However, 
a  growing  range  of  WSM  tools  also 
monitor  and  enforce  service  levels  in 
environments  that  implement  MOM 
and  other  middleware  protocols, 
which  is  why  the  broader  term  “ser¬ 
vice-level  management”  is  more 
appropriate  than  the  middleware-spe¬ 
cific  term  “WSM.” 

Thomson  Learning  uses  Actional's 
SOAPstation  WSM  proxies  to  control 
XML-based  interactions  within  their 
SOA  environment,  according  to  com¬ 
pany  Vice  President  Chris  Crowhurst. 

Companies  can  implement  SOA  with¬ 
out  service-level  management,  but  they 
would  be  foolish  to  do  so  for  long.  As 
SOA  succeeds,  companies  will  need  to 
ensure  24/7  availability,  guaranteed 
delivery  and  performance  optimization 
across  the  service  bus,  spanning  all  ser¬ 
vice  endpoints.  But,  just  as  important, 
your  company  will;  need  to  maintain  an 
IT  culture  that  encourages  maximum 
service  reuse,  through  a  full  slate  of 
SOA-focused  training,  incentives,  tools 
and  practices. 


says: 


“Until  such  a  time  as  the  industry 
converges  on  universal,  compre¬ 
hensive,  stable  Web  services  stan¬ 
dards  in  various  functional  layers, 
Web  services  —  as  a  complete  SOA 
stack  —  will  remain  immature.” 
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Can  your 
network 
perform 
in  harmony? 


INNOVATE  GLOBALLY.  When  Whirlpool  Corporation  wanted  to  foster 
innovation  worldwide,  they  turned  to  the  world’s  networking  company. 
Now,  with  a  global  IP  Virtual  Private  Network  from  AT&T,  Whirlpool 
designers  everywhere  can  access  proprietary  applications,  share 
information,  and  collaborate  in  real  time  —  all  on  a  single  secure, 
standardized  platform.  So  the  world’s  next  revolutionary  design  can  move 
from  concept  to  your  home  faster  than  ever.  CAN  YOUR  NETWORK  DO  THIS? 
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To  find  out  how  AT&T’s  networking  solutions 


helped  Whirlpool  transform  its  business,  go  to 


The  world's  networking  company 
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Find  tools  and  guidance  to  defend  your  network  at  microsoft.com/security/IT 


Free  Tools  and  Updates:  Streamline  patch  management 
with  automated  tools  like  Windows  Server  Update  Services. 
(\nd  verify  that  your  systems  are  configured  for  maximized 
security  with  Microsoft8  Baseline  Security  Analyzer. 


Microsoft  Risk  Assessment  Tool:  Complete  this  free,  or  e 
self-assessment  to  evaluate  your  organization's  security 
practices  and  identify  areas  for  improvement. 


Windows  S  rre  either 
Statesane  o  ■■ 


►  Antivirus  for  Exchange:  Download  a  free  trial  of  Antigen  for ; 
Exchange  and  arm  your  e-mail  server  with  powerful  multi-engine  ;  : 

protection  from  viruses,  worms,  and  inappropriate  content. 
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►  Learning  Paths  for  Security:  Take  advantage  of  in-depth.- 
online  training  tools  and  security  expert  webcasts  organizedrj^r  : 
around  your  specific  needs.  Then  test  your  security  solutions;  t 
in  virtual  labs,  all  available  on  TechNet. 
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E-MAIL  NEWSLETTER  SHOWOASE:  WIRELESS  IN  THE  ENTERPRISE 

0TIA  show  faces  reality  of  mixed  mobile  nets 


BY  JOANIE  WEXLER 

If  last  month’s  CTIA  Wireless  IT  & 
Entertainment  show  had  a  theme, 
I  would  say  it  was  heterogeneity 
There  was  a  growing  awareness 


that  multiple  mobile  operating 
systems,  client  devices  and  car¬ 
riers  will  be  a  fact  of  life  in  the 
enterprise.That  can  be  chalked  up 
to  differences  in  user  device 


needs,  and  diversity  in  coverage 
requirements  across  domestic 
and  international  geographies. 

IT  departments  need  ways  to 
provide  access  from  all  these 


devices  and  locations  to  corpo¬ 
rate  resources.  They  need  to  cen¬ 
trally  manage  and  secure  smart 
devices  that  contain  sensitive  in- 
formation.These  requirements  are 


How  many  tools  do  you  use  to 
Certify,  Identify,  Configure  &  Document 
your  Ethernet  network? 

(That’s  too  many!) 


Introducing  Validator-NT 

The  All-in-One  Network  Management  Tool 

CERTIFY  individual  Ethernet  cable  runs  up  to 
1  Gigabit  Speed  per  IEEE802.3  specifications. 

Test  for  TIA568  Interconnect  problems.  Determine 
fault  locations,  cable  length  and  delay  or  noise 
conditions.  Produce  and  print  cable  test  schedules 
and  cable  test  results.  Qualify  lines  for  VoIP  usage. 

IDENTIFY  active  components  of  your  network  on 
the  other  end  of  the  cable.  Identify  all  types  of  equipment 
and  port  service  discovery  with  advertised  speed  ratings 
and  DHCP  negotiation.  Access  IP  addresses,  ping  equipment 
and  flash  hubs/switches  for  positive  port  location. 

CONFIGURE  links  between  nodes  at  Gigabit  speed. 

Check  IP  addresses  on  netmask,  Gateway/routers  and  domain 
name  servers.  Confirm  links  between  equipment  for  changes 
or  upgrades. 

DOCUMENT  the  network  with  the  included  powerful 
Plan-Urn™  software.  Create  layouts  of  offices/premises  or  import 
existing  Visio/AutoCAD  drawings.  Show 
cables  and  equipment  they  connect  to  in 
physical  locations.  Print  out  layouts  and 
corresponding  Cable  Test  Schedules.  The  Network 
Tool  section  of  Plan-Urn™  allows  you  to  create  a  complete 
topology  layout  of  the  network  for  on-site  reference,  showing 
connections,  equipment  and  cable  pathways.  You  can  add  notes  to  each 


4"  color  LCD  screen 

Lithium/ion  battery 
provides  8  continuous 
hours  of  use 
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Powerful  Plan-Umm 
software  included 


NT955 
MSRP  only 
$1495.00 


Everything  you  need  to  Test,  Trace  and  Tune  your  Ethernet  Network. 


Test-Um  Inc. 

The  Intelligent  Test  Solutions  Company 


We  Make  It 

BEST 

In  the 

U3A 


805-383-1500  •  FAX  805-383-1595  •  www.test-um.com 


motivating  some  vendors  to  act. 

For  example,  the  day  before  the 
CTIA  exhibit  floor  opened,  Palm 
and  Microsoft  announced  that 
Palm  would  be  licensing  Micro¬ 
soft’s  Mobile  5.0  mobile  operating 
system  to  run  on  its  Treo  600  and 
650  smartphones.  As  a  result,  users 
will  be  able  to  choose  between 
the  PalmOS  and  Windows  Mobile 
5.0  operating  systems.  Mobile  5.0- 
enabled  Treos,  to  be  available  for 
use  on  the  Verizon  Wireless  EV-DO 
network  in  early  2006,  would 
allow  Treo  users  to  connect  to 
their  corporate  Exchange  e-mail 
servers  and  deploy  corporate 
applications  written  for  Windows. 

The  move  acknowledges  that 
more  handhelds  need  to  support 
access  to  back-end  corporate  re- 
sources.The  move  gives  Treo  more 
of  an  enterprise  play  Microsoft 
operating  system-enabled  devices 
do  a  good  job  of  allowing  access 
to  Microsoft  resources  only.  Re¬ 
search  In  Motion’s  BlackBerry  with 
its  Enterprise  Server,  has  been  the 
only  architecture  letting  users  of 
handhelds  access  their  full  suite  of 
back-end  applications. 

Good  Technology  announced 
that  it  would  support  the  Palm- 
Mobile  5.0  devices  with  its  cen¬ 
tralized  management,  application- 
update  and  security  software. 

Meanwhile,  Orative  Technology 
explained  that  its  presence  man¬ 
agement  software  is  both  device- 
and  carrier-agnostic.  Orative’s 
software  enables  business  users 
to  screen  voice  calls  based  on 
caller  identity  subject  matter  and 
the  called  user’s  availability 

CEO  Paul  Fulton  says  the  soft¬ 
ware  runs  SSL  encryption  and 
single  sign-on  authentication, 
and  corporate  IT  can  centrally 
deactivate  lost  phones  and  erase 
sensitive  information  from 
remote  devices. 

Wexler  is  an  independent  net¬ 
working  technology  writer/editor 
in  Silicon  Valley.  Reach  her  at 
joanie@jwexler.com. 
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BlGlRON  RX  1  □  G  ETHERNET  SWITCH  FAMILY 

Leaves  others  Far  behind 


THRUST  SSC  (SUPER  SONIC  CAR)  SETTING  THE  LAND  SPEED  RECORD  DN  OCTOBER  15,  1997  IN  THE  BLACK  RDCK  DESERT,  NEVADA. 
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Introducing  the  industry’s  highest  performance  Ethernet 
switch  family  ready  to  deliver  wire-speed  non-blocking 
performance  to  1.14  billion  packets  per  second  (or  up  to 
3.42  bpps  per  7-foot  telco  rack).  Foundry’s  Biglron  RX  Series 
offers  the  highest  density  Gigabit  and  10  Gigabit  Ethernet 
switching  and  routing  solution  in  the  industry  and  is  built  on  a 
distributed  and  redundant  switch  architecture  that  ships  ready  to 
support  100  Gigabit  Ethernet.  Featuring  support  for  scalable 
Ethernet  switching,  IPv4/IPv6  routing,  consistent  low  latency 
for  all  packet  sizes  and  advanced  quality  of  service  design.  The 
Biglron  RX  Series  meets  and  exceeds  the  needs  of  a  wide  range 
of  environments  including  Enterprise  LAN,  HPC,  MANS,  and 
next  generation  data  centers. 

FIND  OUT  MORE  ABOUT  THE  BlGlRON  RX  SERIES  AND  HOW 
YOU  CAN  TAKE  ADVANTAGE  OF  A  LIMITED  TIME  OFFER  TO 
REDEFINE  PERFORMANCE  AND  RELIABILITY  IN  YOUR 
NETWORK.  LOG  ON  TO  WWW.FOUNDRYNET.COM/BlGlRONRX. 
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FOUNDRY 

NETWORKS 

The  Power  of  Performance  ™ 
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FDR  MDRE  INFORMATION  PLEASE  CALL:  US/CANADA  1  BBS  TURBOLAN, 
INTERNATIONAL  +1  408.586.1700  OR  VISIT  OUR  WEBSITE  AT  WWW.FOUNDRYNET.COM 


Foundry  Networks,  Inc.  is  a  leading  provider  of  high-performance  Enterprise  and  Service  Provider  switching,  routing  and  Web  traffic  management  solutions  including  Layer  2/3  LAN  switches. 
Layer  3  Backbone  switches,  Layer  4-7  Web  switches,  wireless  LAN  and  access  points,  access  routers  and  Metro  routers.  Foundry’s  8,500  customers  include  the  world’s  premier  ISPs,  metro  service 
providers,  and  enterprises  including  e-commerce  sites,  universities,  entertainment,  health  and  wellness,  government,  financial,  and  manufacturing  companies. 

©  2005  Foundry  Networks®,  the  Foundry  logo,  The  Power  of  Performance™,  Foundry™,  and  Biglron®  RX  Series  are  trademarks  of  2005  Foundry  Networks,  Inc. 

All  Rights  Reserved.  All  other  marks  are  trademarks  of  their  respective  owners. 
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E-iAH.  NEWSLETTER  SHOWCASE:  STORAGE  IN  THE  ENTERPRISE 

What’s  missing  in  SMkSP 


BY  MIKE  KARP 

The  Storage  Networking  Indus¬ 
try  Association’s  software  manage¬ 
ment  initiative  specification  is  still 
in  its  infancy  It  provides  for  dis¬ 


covery  only  but  no  management. 

SMI-enabled  management  con¬ 
soles  are  only  certified  to  discover 
host  bus  adapters,  storage-area 
network  (SAN)  fabrics,  storage 


switches  and  arrays.  Tape  drives, 
tape  libraries,  optical  storage  and 
other  assets  that  might  be  SAN- 
attached  are  not  yet  incorporated. 

At  least  one  vendor  has  made 


some  of  its  tape  libraries  discover¬ 
able  through  SMI-S,  although  SNIA 
hasn’t  certified  this  discovery  on 
the  SAN  with  any  management 
consoles.  ADIC’s  iPlatform  librar- 


Rollover  your  unused  monthly  CDN 
dollars.  T  r  ~  "  — 

It's  a  great  $ 


grow  your 
business. 


Get  more  from 
your  CDN  dollars 
with  Mirror  Image’s 
TotalValuePlan. 

Paying  for  Content  Delivery  services 
and  not  getting  the  chance  to  use 
them  has  never  made  any  sense. 

Some  Content  Delivery  Network  (CDN) 
vendors  charge  their  customers  the 
maximum  contractual  monthly  fee  even 
if  the  customer  still  has  unused  CDN  services  for  that 
month.  Plus,  these  customers  cannot  carryover  those 
unused  services  from  one  month  to  the  next.  That  is, 
up  until  now. 

Mirror  Image  lets  its  customers  rollover  their  unused 
contractual  monthly  services  with  Mirror  Image’s 
TotalValuePlan. 


Ill 

mirror  image 


The  TotalValuePlan  provides  customers  with  the 
following  benefits: 

•  No  overage  penalties  or  bursting  fees. 

•  Rollover  your  unused  dollars. 

•  Buy  as  you  go  with  our  flexible  term  length  contracts. 

Our  business  is  too  percent  customer-centric,  and  we 
encourage  our  customers  to  grow  their  business  and 
be  successful  by  providing  them  with  customer  friendly 
products,  services  and  pricing. 

For  more  information  about  Mirror  Image’s 
TotalValuePlan  call  us  today  at  +i  800  353  2923  and  learn 
how  you  can  get  more  out  of  your  CDN  dollars. 


Our  Network  is  Your  Network? 

www.mirror-image.com 


Copyright  ©2005  Mirror  Image*  Internet,  Inc. 


ies  have  SMI-S  built  in,  and  there¬ 
fore  any  SMi-S  conformant  client 
should  be  able  to  discover  them. 
But  it  hasn’t  been  conformance- 
tested  because  SNIA  requires  at 
least  two  vendors  to  submit  prod¬ 
ucts  for  testing  and  a  second  ven¬ 
dor  has  not  come  forward. 

Many  tape  libraries  offer  a  vari¬ 
ety  of  features  and  tend  to  require 
a  lot  of  management.  Many  of 
these  features  are  specific  to  indi¬ 
vidual  products,  and  typically  pro¬ 
vide  the  proprietary  differentia¬ 
tors.  None  of  this  is  likely  to  fall 
within  the  SMI  specification  how¬ 
ever,  nor  should  it. 

A  storage  manager  doesn’t  have 
to  give  up  standards-based  man¬ 
agement  to  get  complete  control 
over  your  storage. 

In  the  case  of  ADIC,  while  the 
libraries  are  discoverable 
through  any  SMI-S  console,  ADIC 
has  made  them  manageable 
through  the  ADIC  API.  EMC  takes 
advantage  of  this.The  result  is  the 
availability  of  the  ADIC  libraries 
appears  in  real  time  on  the  same 
SAN  topography  map  as  all  the 
other  SAN  elements,  but  the 
libraries  are  still  fully  managed 
through  the  API. 

Other  management  capabilities 
also  lie  outside  the  specification,  a 
case  that  becomes  obvious  as 
your  enterprise  storage  responsi¬ 
bilities  expand  to  include  remote 
storage.  What  if  you  want  to  man¬ 
age  the  whole  data  path  to  a  re¬ 
mote  installation? 

You  can’t  understand  every 
event  that  interacts  with  data  from 
a  remote  site  if  you  can’t  look 
along  the  whole  data  path.  SMI-S 
will  be  of  no  help  here.  For  that 
kind  of  management  capability 
you  will  have  to  look  beyond  stan¬ 
dard  storage  resource  manage¬ 
ment  tools  to  CentrePath’s 
Magellan  management  software. 

Karp  is  senior  analyst  with  En¬ 
terprise  Management  Associates. 
He  can  be  reached  at  mkarp @ 
enterprisemanagement.  com. 
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YOUR  JOB  IS  TO  KEEP  SYSTEMS  AND  APPLICATIONS  RUNNING. 
OUR  MISSION  IS  TO  KEEP  PEOPLE  AND  INFORMATION  GONNECTE 

LET’S  WORK  TOGETHER. 


Continuous  access  to  information  no  matter  what.  That’s  Information 
Availability.  It’s  what  your  employees,  suppliers  and  customers  demand  every 
minute  of  every  day.  But  to  deliver  it  flawlessly,  you  need  a  massive  global 
infrastructure,  redundant  systems  and  diverse  networks  being  monitored  and 
supported  by  skilled  technical  experts  at  secure  facilities.  That’s  exactly  what 
SunGard  provides. 

As  a  result,  we  can  offer  you  a  higher  level  of  availability  and  save  your 
company,  on  average,  25%*  versus  building  the  infrastructure  yourself.  Plus, 
it’s  a  vendor  neutral  solution  that  lets  you  control  your  data,  applications  and 
network  while  giving  you  the  flexibility  to  adjust  to  the  changing  needs  of  your 
business.  But  best  of  all,  it  lets  you  spend  more  time  solving  business  problems 
and  less  time  solving  technical  problems. 


For  years,  companies  around  the  world  have  turned  to  SunGard  to  restore  their 
systems  when  something  went  wrong.  So,  it’s  not  surprising  that  they’re  now 
turning  to  us  to  mitigate  risk  and  make  sure  they  never  go  down  in  the  first  place. 


You  want  your  network  and  systems  to  always  be  up  and  running.  We  want 
same  thing.  Let’s  get  together.  To  learn  more,  visit  www.availability.sungard.com 
call  1-800-468-7483. 


Keeping  People 
and  Information 
Connected! 


Availability  Services 


‘Potential  savings  based  on  IOC  White  Paper,  Ensuring  Information  Availability:  Aligning  Customer  Needs  with  an  Optimal  Investment  Strategy. 


Are  you  adrift  in  a  sea  of  remote  support  software 
options  -  but  with  none  that  meet  all  your  needs? 
NetOp  Remote  Control  is  different.  Unlike  the  bargain 
products  or  those  buried  in  other  applications  - 
NetOp  is  designed  specifically  to  meet  the  remote 
support  and  administration  needs  of  professional 
users  like  you.  NetOp  is  remarkably  flexible,  letting 
you  securely  access  users  running  virtually  any 
operating  system  and  connect  across  all  standard 
communication  protocols.  NetOp's  incredible  speed 
let's  you  quickly  fix  problems  on  distant  LANs,  over 
the  Internet,  or  even  over  slow  modem  connections. 
But  even  more  importantly,  you  can  do  all  this  in 
total  safety,  thanks  to  NetOp's  unparalleled  set  of 
security,  compliance  and  auditing  features.  Give 
your  organization  the  support  -  and  protection  -  it 
deserves.  NetOp  Remote  Control  -  Nothing 
comes  remotely  close. 

©  Copyright  2000-2005  Danware  Data  A/S.  All  rights  reserved.  NetOp  and  the  red 
kite  are  registered  trademarks  of  Danware  Data  A/S.  Other  brand  and  product 
names  are  trademarks  of  their  respective  holders. 


REAL  SECURITY 


Centralized  user  rights, 
authentication  and 
authorization;  multiple 
passwords,  notification 
options  and  encryption 
levels;  advanced  logging, 
session  recording  and 
more.  Optional  Security, 
Name  and  Gateway  server 
modules. 


REAL  CROSS-PLATFORM  REAL  SUPPORT  OPTIONS 


Access  any  Windows,  Linux 
or  Mac  OS  X  system  from 
your  Windows,  Linux  or 
Solaris  desktop,  a  web 
browser,  Pocket  PC 
handheld,  via  Terminal 
Services,  dial-up  modems 
or  even  launch  NetOp  from 
your  USB  Thumb  Drive  on 
a  temporary  PC. 


Download  an 
evaluation  copy  at 

www.RemoteControlSW.com 


NetOp' 

Remote 

Control 


Award-winning  remote 
control,  inventory,  remote 
management,  file  transfers, 
VoIP  &  text  chat,  scripting; 
tightly  integrates  with 
systems  management 
applications;  configure  & 
deploy  to  remote  users; 
session  recording  and 
playback,  and  much  more. 


Remote  Control 


-At  CrossTec 

Corporation 
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and  Support:  800.675.0729 
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Hybrid  IT  help 

Companies  seek  a  mix  of  technology  savvy  and  operational  expertise. 


BY  CARA  GARRETSON 

There’s  a  new  type  of  position  emerging  in  IT 
departments  called  “hybrids,”  roles  that  mix  tech¬ 
nology  talent  with  business  acumen  or  sector-spe¬ 
cific  experience  to  create  an  employee  who  gets  IT,  but 
also  gets  the  company 

Companies  should  seek  and  cultivate  IT  employees  who  have  the  skills  to  analyze 
how  doing  their  job  makes  a  difference  not  only  to  end  users,  but  to  the  business  itself, 
says  Jeff  Markham,  San  Francisco  branch  manager  of  Robert  Half  Technology  an  IT 
staffing  and  placement  firm.These  employees  "need  to  know ‘how  does  the  company 
make  money  and  if  I  develop  an  application,  how  does  it  affect  that?’”  Markham  says. 

Technology  has  become  the  backbone  of  information  provider  Thomson  Corp.'s 
business  because  it’s  the  primary  way  in  which  the  company  reaches  its  customers. 
“We  encourage  [the  IT  staff]  to  think  like  the  customers  and  think  across  [depart¬ 
mental]  borders,”  says  Carl  Giaimo,  senior  director  with  Thomson’s  Technology  Best 
Practices,  a  small  group  of  technology  professionals  who  work  across  the  many  divi¬ 
sions  of  Thomson. “The  way  we  get  there  is  an  experiential  approach;  teamwork  and 
exposure  to  the  other  groups.” 

Specifically  the  company  each  year  will  train  about  25  or  30  employ¬ 
ees  out  of  its  9,000-strong  IT  department  by  pulling  in  directors 
from  all  of  Thomson’s  business  units  to  educate  them  about 
company  operations. 

“The  purpose  of  the  program  is  these  guys  know  the  tech¬ 
nology,  but  they  need  to  know  the  business  side.The  intent  is 
that  they’re  going  to  get  a  significant  increase  in  responsibility  with¬ 
in  their  tech  organization  within  12  to  18  months,”  Giaimo  says.“By 
rotating  them  through  the  company,  it  gives  them  such  an  advan¬ 
tage  of  really  seeing  the  big  picture.” 

Community  Medical  Centers  is  another  business  benefit¬ 
ing  from  this  blend  of  IT  and 
operations  savvy. 

“I  don’t  think  my  compa¬ 
ny  would  be  in  the  [strong] 
position  we  are  today  if  it 
weren’t  for  those  hybrid  roles,’ 
says  Rich  Cummins,  manager 
of  network  services  with  the 
healthcare  firm  in  Fresno,  Calif.  Of 
Cummins’  1 1  direct  reports,  he  says  about  half  of 
them  operate  in  a  hybrid  role. 

The  healthcare  company  has  three  major  IT  ini¬ 
tiatives  underway  -  one  to  replace  X-ray  film  with 
electronic  images,  another  to  let  doctors  remotely 
sign  off  on  charts  and  a  third  to  build  a  portal  with 
access  to  a  number  of  crucial  applications.  Without 
hybrid  employees  who  understand  how  doctors,  nurses 
and  other  staffers  use  these  programs,  these  critical  busi¬ 
ness  applications  would  not  be  nearly  as  effective. 


“We  would  have  had  a  vendor  come  in  and  install  [the  applications]  and  say, ‘Well, 
you’re  up  and  running’  and  have  a  group  support  it,  but  there  would  be  no  integra- 
tion.The  beauty  of  the  hybrid  role  is  the  person  understands  the  technology  infra¬ 
structure  and  the  end  user,”  Cummins  says. 

The  concept  of  the  hybrid  IT  worker  isn’t  new,  particularly  to  transaction-based  sec¬ 
tors  such  as  financial  services,  says  David  Foote,  president  of  management  consultan¬ 
cy  and  research  firm  Foote.  But  the  trend  is  starting  to  spread  to  different  sectors  and 
reach  deeper  into  the  ranks  of  IT  departments.“We're  projecting  [hybrid  jobs]  are 
going  to  become  more  and  more  common  in  industries  where  the  percentage  of  the 
IT  budget  to  overall  spending  on  business  processes  is  much  higher  than  the  norm,” 
he  says,  citing  banking,  healthcare,  retail,  insurance  and  education. 

Foote  points  out  that  what  the  hybrid  IT  staffer  represents  is  much  more  than  a  com¬ 
pany’s  desire  to  align  IT  with  their  business.  “IT  is  the  business.  If  you’re  talking  about 
aligning, you’re  so  far  behind  you  might  as  well  talk  about  leaving  the  field,”  he  says. 

Despite  the  benefits  these  hybrid  workers  can  bring  to  an  organization,  it  appears  they 
aren’t  widely  recognized,  or  even  identified.  Many  IT  managers  have  some  key  staffers 
who  learn  quickly,  work  well  with  other  departments  and  can  converse  with  marketing  or 
finance  nearly  as  easily  as  with  other  IT  employees.  But  few  managers  have  gone  so  far 
as  to  give  these  individuals  distinct  titles  or  adjust  their  compensation. 

“There  are  certain  individuals  who  work  in  my  department . . .  but  go  beyond  tech¬ 
nology  and  get  into  business  processes  and  reengineering,”  says  Autumn  Bayles.CIO 
with  Tasty  Baking  Co.,  the  publicly  traded  producer  of  Tastykake  baked  goods  in 
Philadelphia/These  are  high-potential  types  of  people;  they  can  pick  up  anything 
quickly. They’re  not  limited  to  technical  tasks.” 

For  example,  Bayles  loaned  one  of  her  team  members  to  help  a  company  ware¬ 
house  troubleshoot  an  inventory  problem  that  wasn’t  an  IT  issue.  Another  of 
Bayles’  employees  was  requested  to  join  a  different  department,  human 
resources,  at  Tasty  Baking,  even  though  the  department  has  nothing  to  do 
with  IT.  “The  appeal  was  she  worked  well  with  the  [other]  team  and  has 
an  overall  can-do  attitude,”  Bayles  says. 

Yet  these  hybrid  staffers  -  which  make  up  about  20% 
of  Bayles’ staff  of  16  —  aren’t  formally  recognized  by 
the  company  although  their  skills  are  pointed  out  in 
conversations  and  performance  reviews,  she  says. 

“And  they’re  looked  upon  as 
[job]  candidates  for  depart¬ 
ments  outside  of  IT’ 

It’s  the  same  at  Community 
Medical  Centers;  these  key 
employees  are  valued,  but  not 
necessarily  recognized  for 
their  combined  skills.  “1  usu¬ 
ally  have  a  couple  go-to  guys 
on  the  team,  and  they’re  usual¬ 
ly  juggling  three  to  four  critical 
projects  at  the  same  time,”  Cummins  says.  “It’s  not 
something  we’ve  consciously  decided  is  a  hybrid 
role  —  it  just  evolved  that  way” 

But  Cummins  can’t  let  these  workers  focus  only  on 
the  company’s  strategic  business  applications. “You  still 
have  to  maintain  the  network,  deploy  Microsoft  patches, 
back  up  the  network,  manage  the  data  center . . .  and  quite 
frankly,  if  you  don’t  do  these  things  at  the  back  end,  the  busi¬ 
ness  applications  aren’t  going  to  run.’’H 
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How  much  can  your  network  analyzer  handle? 

Observer  is  the  only  fully  distributed  network  analyzer  built 
to  cover  your  entire  network  (LAN,  802.1  la/b/g,  Gigabit,  WAN). 
Download  your  free  Observer  10  evaluation  today  and  experience 
more  real-time  statistics,  more  expert  events  and  more  in-depth 
analysis  letting  you  monitor,  troubleshoot  and  manage  every  site 
on  your  network  with  one  complete  solution. Choose  Observer. 

-5EOJR  i  tv  codtrol  -  Watch  for  virus  and  hack  attacks  to 


quickly  isolate  infected  areas. 


-RLERT  -  Setup  Triggers  and  Alarms  on  any  network  threshold 
and  be  the  first  to  know  of  network  issues. 

-ret work  CNERLORB-  Monitor  bandwidth  utilization, access 
point  utilization  rates  and  network  top  talkers  with  Real-Time  Statistics. 


US  &  Canada  toll  free  800.526.5958 
fax  952.358.3801 


UK  &  Europe  +44(0)1959569880 

www.networkinstruments.com/analyze 


Does  your  analyzer  cover  one  room  or 

the  whole  house? 


m  inr 


HE  T WORK  OVERLOAD 


-  ALERT 


Need  Secure  Console  Management? 


SSH  or  Out-of-Band  Access  to  Consoles  at  Remote  Locations 


■  Secure  Shell  (SSHv2)  Encryption 

■  Simultaneous  SSH  or  Telnet 

■  TACACS  &  RADIUS  Authentication 

■  Dial-Back  Security  on  Modem  Port 

■  Command  Logging  with  Audit  Trail 
a  SYSLOG  Reporting 

■  NTP  Server  Ready 
b  Any-to-Any  Port  Switching 
a  Non-Connect  Port  Buffering 
b  Port-Specific  Password  Protection 
b  Data  Rate  Conversion 
b  Rack  Mountable  -  Requires  1  Rack  Unit 
B  115/230  VAC  or  -48  VDC  Models 

The  SCM-1 6  Secure  Console  Management  Switch  provides  in-band  and 
out-of-band  access  to  RS232  console  ports  on  UNIX  servers,  routers  and  any  other 
network  elements  which  have  a  serial  console  or  craft  port.  System  administrators 
can  access  serial  maintenance  ports  over  the  network  via  SSH  connections  and  simple, 
menu-driven  commands  or  through  a  discrete  TCP  port  connection,  mapped  directly  to 
one  of  the  SCM-1 6  serial  outputs. 


Web  Browser  Interface 


Visit  Website  for  Complete  NetReach™  Product  Line 

(800)  854-7226  •  www.wti.com 
5  Sterling  •  Irvine  •  California  92618-2517 
(949)586-9950  •  Fax:(949)583-9514 


©  200^ Telematic  lac  .  5  Sterirng,  Irvbe.  Cx.  92618  --  hiW/vvww  wticom 


Yes,  We  are  Customer  Friendly! 

✓  Two  Year  Warranty 

✓  We  Stock  for  Same  Day  Shipment 

✓  30  Day  Return  Policy 

✓  Call  or  Email  for  an  Online  Demo 


western  telematic  incorporated 
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maybe  it’s  time 
you  look  at 

AdaptiveKVM’' 

When  servers  are  down  or  inaccessible,  you  need 
fast  and  reliable  out-of-band  access  and  control. 

Cyclades  AdaptiveKVM™  (patent  pending)  is  the  industry’s  first 
integrated  solution  that  combines  KVM  over  IP  and  Microsoft® 
Remote  Desktop  Protocol  (RDP)  technology  in  a  single 
appliance.  By  using  KVM  over  IP  combined  with  RDP, 
AdaptiveKVM  provides  continuous  access  for  remote  server 
management. 

Next-Generation  KVM  Solution 


AlterPath™  KVM/netPlus 


Download  a  FREE  White  Paper  on  AdaptiveKVM 

www.cyclades.com/akvm 


r 
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www.cyclades.com/nw  i  j 

1.888. cyclades  ■  sales@cyclades.com  V-*  V  V_/ 1  OVJS 
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Power  in  Your  Data 


With  Sentry!  J 

CDU  Product  Family:  Metered,  Smart  &  Switched 


©Server  Technology,  Inc,  Sentry  is  a  trademark  of  Server  Technology,  Inc 


Server  Technology 

Solutions  for  the  Data  Center  Tq'iiprrjprit  r 

The  Sentry  CDU  distributes  p-  /ver  for  Blade, 
servers  or  up  to  42  dua  power  1U  servers 
in  one  enclosure.  Single  or  3-phase  input 
with  110 VAC,  208 VAC  or  mixed  110/208VAC 
single-phase  outlet  receptacles 

Metered  CDU 

>  Local  input  Current  Monitoring 
Smart  CDU 

>  Local  Input  Current  Monitoring 

>  Supports  Externa  Temperature  and 
Humidity  Probes 

>  I  Monitoring  of  Power  Temperatures 
and.  Humidity 

Switched  CDU 

>  Local  input  current  Monitoring 

>  Supports  External  Temperature  and 
Humidity  Probes 

>  IP  Monitoring  of  Power,  Temperatures 
and  Humidity 

>  Remote  Power  Control  of  Each  Outk 
-  On  /  Off  /  Reboot 


Server  Technology,  Inc. 
1040  Sandhill  Drive 
Reno,  NV  89521 
USA 


toll  free  +1.800.835.1 51 5 
tel +1.775.284.2000 
fax  +1.775.284.2065 

www.se.rvertech.com 

sales@servertech.com. 


MONITOR  SERVER  ROOM 

THREATS! 


•  Monitor  threats  such  as  temperature,  humidity 
and  water  leaks 

•  Be  notified  via  email,  SNMP  traps,  web-page 
alerts  and  a  visual  indicator 

•  Low  cost  and  compact  size  system 

Receive  a  FREE  1 0  ft.  Temperature  Sensor  when 
you  purchase  an  ENVIROMUX-MINI  by  12/31/05. 


Call  800-742-8324  and  mention  reference  code  ENV-NW. 


NETWORK 
TECHNOLOGIES 
-S-^-g-g-  INCORPORATED 


Visit:  www.nti1.com/nw.html 
Email:  sales@ntigo.com 
Call:  800-742-8324 


Production  Tracking  Over 


HOBBESES 

onnBSEi 

HHI13I33 


Eliminate  your  shop-floor 
PCs  with ... 

Ethernet  Terminals  from 
ComputerWise  connected  to 
your  in-house  LAN. 

Capture  production  data 
directly  into  files  on  your 
server. 


Features  £  Benefits 

•  Interactive  Telnet  Client 

•  TCP/IP  over  10/IOOBaseT  Ethernet 

•  Built-in  Barcode  Badge  Reader 

•  Optional  Mag-Stripe  &  RFID  Badge  Reader 

•  Auxiliary  RS-232  Serial  port 

•  Customizable  Data  Collection 
Program  Included 

•  Larger  keyboard  and 
display  sizes  available 


COM  I ’l  TKliWBE. 

Call  1-800-255-3739  or  visit  www.computerwiSB.c 
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"This  little  thing 

KX  butt!" 


Actual  Size 


Introducing  the  next 
generation  of  KVM 

The  Dominion  KX101 


All  the  power  of  our  Dominion®  KX  packed  into  a  smaller,  incredibly  versatile  form  factor. 

•  Deploy  them  by  the  hundreds,  even  in  dispersed  locations. 

•  Manage  them  all  centrally  through  a  single  IP  address. 

•  Get  to  them  all  without  the  access  limitations  of  a  KVM  switch. 

Visit  us  online  to  learn  more  about  switchless  KVM  and  the  future  of  infrastructure  management. 


www.KXbutt.com 


Raritan 


When  you're  ready  to  take  control. 


©  2005  Raritan  Computer.  Inc.  Raritan  and  Dominion  are  registered  trademarks  of  Raritan  Computer.  Inc. 


MARKETPLACE 


N  YOUR  REACH 


LOCAL  OR 


SERVER 


NAGEMENT  SOLUTIONS 


UltraMatrix™ 

Remote 


■  MATRIX  KVM  SWITCH  WITH 

INTEGRATED  REMOTE  ACCESS  OVER  IP 


UltraMatrix™ 

E-series 


■  PROFESSIONAL  MULTI-USER  KVM  SWITCH 
2  -  4  KVM  STATIONS  TO  1,000s  OF  COMPUTERS 


KVM  OVER  IP 


KVM  SWITCH 


System-wide  connectivity  over  IP  worldwide  and  locally 
Connects  1,000  computers  to  up  to  256  user  stations 
Supports  PC,  Sun,  Apple,  USB,  UNIX,  serial  devices 
High  quality  video  up  to  1280  x  1024 
Secure  encrypted  operation 

View  real-time  video  from  4  computer  connections  with 
quad-screen  mode 


PC  or  multi-platform  (  PC/Unix,  Sun,  Apple,  others) 

On-screen  menu  informs  you  of  connection  status  between  units 

in  an  expanded  system 

Powerful,  expandable,  low  cost 

No  need  to  power  down  most  servers  to  install 

Security  features  prevent  unauthorized  access 

Free  lifetime  upgrade  of  firmware 

Video  resolution  up  to  1600  x  1280 

Available  in  several  models 

Easy  to  expand 


The  UltraMatrix  Remote  represents  the  next  generation  in  KVM  switches  with  IP  access.  It 
provides  a  comprehensive  solution  for  remote  server  access  over  IP  and  local  as  well. 


The  UltraMatrix  E-Series  represents  the  latest  in  KVM  matrix  switch  technology,  at  an 
affordable  price.  The  E-Series  allows  you  to  connect  up  to  256  user  stations  to  as  many  as 
1,000  computers.  The  UltraMatrix  E-Series  is  available  in  several  sizes:  2x4,  2x8,  2x16, 
4x4,  4x8,  4x16,  1x8,  and  1x16  in  either  PC  or  multi-  platform. 


■  KVM  RACK  DRAWERS  WITH  KVM  SWITCH  OPTION 


RackViews  offer  the  latest,  most  efficient  way  to  organize  and  streamline  your 
server  rooms  and  multiple  computers. 

The  RackView  is  a  rack  mountable  KVM  console  neatly  fitted  in  a  compact  pull-out 
drawer.  This  easy-glide  KVM  drawer  contains  a  high-resolution  TFT/LCD  monitor,  a 
tactile  keyboard,  and  a  high-resolution  touchpad  or  optical  mouse. 


XtendVue 

Vertical  Rack  mountable  LCD 
With  Built-in  KVM  Extender 


RackView 

Fold-Forward 


RackView 

Fold-Back 


RackView 
LCD  Monitor 


RackView 

Keyboard 


ROSE  US  281  933  7673 

ROSE  EUROPE  +44(0)  1264  850574 
ROSE  ASIA  +65  6324  2322 

ROSE  AUSTRALIA  +617  3388  1540 


800-333-9343 

WWW.ROSE.COM 


UPROSE 

XT^electronics 


Beat  Your  Budgets  With  A  Lease 

(or  ADD  to  existing  leases!) 


NO  CHARGE  for  3D  drawings  of  your 
room/site.  We  just  need  the  dimensions 
of  the  room  along  with  an  equipment  list. 


QUICK  3H2P  We  ship  within  5  business 
days  of  order  receipt. 

We  accept  VISA,  Mastercard,  and  American  Express 

For  specs,  please  check  out  our  website: 

■ 

The  Salix  Group  •  1.800.668.9319  •  www.salixgroup.com 

G.S  A  Approved  (GS29F0269H)  Standing  offer  -  E60PS-0-0035/003/PS 


Looking  ahead  to  your  next 
network  project? 

Need  information  now? 

Check  out  VENDOR  SOLUTIONS  for  the  most 
comprehensive  information  on  network  IT  products 
and  solutions  for  your  business  including: 

►White  Papers 
►Special  Reports 
►Partner  Sites 
►Webcasts 

►Marketplace  Product  Finder 
Visit  www.networkworld.com/vendorsolutions  today. 

NETWORKWORLD 


Terminal  server  vendors,  who  proclaim  that 
they  have  Secure  Out  Of  Band  products,  rely 
on  RADIOS,  TACACS+  and  other  in-band 
protocols  to  provide  security.  By  inference, 
they  imply  they  secure  out  of  band  access 
when,  in  fact,  they  offer  only  network  security, 
which  conflicts  with  out  of  band  access. 

A  true  Secure  Out  of  Band  Management 
solution  should  provide  strong  security  without 
reliance  upon  network-based  protocols. 


!DI  offers: 

-•  Hardware  encryption  over  dial-up 
and  network  connections 
-•  RSA  certified  SecurlD  authentication 
without  a  network. 

•  Patented  central  management  of  all 
remote  devices 


Full  NIST,  FIPS  1 40-2  certifications  e-n. 

Remote  Power  control  *-t. 

Homologous  world-wide  approved  *-n 
internal  modems 


CDI  has  been  building  encryption  equipment  for  over  fifteen  years.  Our  customers  and  partners  include 
major  financial  institutions,  government  agencies,  major  telcos,  utilities,  and  the  United  States  military. 


Communication  Devices  Inc. 


.  ,  TAP  into  Performance 

AZGtWO  fkTAPs  Monitor  mission-critical  links  with  the 

latest  technology  through  new  /?TAP> 

Stop  jeopardizing  network  performance  and  risking  costly  downtime.  Be  confident  you 
have  maximum  visibility  into  your  full-duplex  links  by  configuring  an  nTAP  solution  that 
fits  your  network  and  budget.  Visit  www.networkTAPs.com/visibilitytoday. 


Ethernet  Copper  nTAP 

For  copper-to-copper  connections 
Choose  your  speed: 

10/100 . $395 

10/100/1000  . $995 
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10/100/1000  Conversion  nTAP 

Copper  input  with  copper  or 
fiber  output  options 
Choose  your  analysis  output: 

SX..„ . $1,495 

LX.... . $1,495 


Optical  Fiber  nTAP 

j 

Multiple  split  ratios 

Choose  your  port  density: 

Single  channel . 

....$395 

s 

Four  channel . 

$1,795 

J 

Six  channel . 

$2,395  j 

_ A 

To  learn  more  about  how  nTAPs  can  boost  your  network  visibility  and  which  configuration  option 
is  best  for  you,  go  to  www.networkTAPs.com/visibility  or  call  866-GET-nTAP  today. 

Free  overnight  delivery* 

C€  •Free  overnight  delivery  on  ail  U.S.  orders  over  $300.00  confirmed  before  12  pm  CST.  (  *TAP 

nTAP  and  the  nTAP  logo  are  trademarks  or  registered  trademarks  of  Network  Instruments,  LLC  v 
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SUBSCRIPTIONS 

Each  week  Network 
World  delivers  an 
extensive  line-up  of 
product,  service 
and  industry  news, 
analysis,  case 
studies,  buyer's 
guides,  expert 
opinion  and  management 
advice  that  Network  IT 
Executives  rely  on  to  get  their 
job  done. 

To  subscribe  visit: 
apply.nww.com/free05 

Network  World,  Inc.,  118  Turnpike  Road,  Southborough,  MA  01772  j  (508)460-3333 


Luggage,  Fine  Leather  Goods, 
Gifts,  and  more! 
Hartmann,  Andiamo, 
Samsonite,  Cross 
10%  discount  for  Network 
World  readers 
Enter  code  NWW  2005 


WLAN 

SPECTRUM  ANALYZER 

True  Spectrum  Analysis! 
Not  a  WLAN  chip  set 


All  2.4  and  5 
GHz  bands  in 
one  unit  for 
only  $4400. 

Single  band 
2.4  GHz  unit 
for  only  $2600. 
Calibrated  Antennas  j 
Immediate  Delivery  I 


BANTAM  INSTRUMENTS  j 

www.Bantamlnstmments  com  j 


MAHKt I FLAUt 


78  •  www.networkworld.com  •  10.10.05 


Sales  Offices 


Carol  Lasker,  Executive  Vice  President,  Sales 
JaneWeissman,  Sales  Operations  Manager 
Internet:  clasker,  jweissman@iiww.com 
(508)  460-3333/FAX:  (508)  450-1237 _ 


Hew  York/New 

Tom  Davis,  Associate  Publisher,  Eastern  Region 
Elisa  Della  Rocco,  Regionai  Account  Director 
Agata  Joseph.  Sr.  Account  Coordinator 
Internet:  tdavis.  eilsas,  ajoseph@nww.com 
(201)  634-2300, 'FAX:  (201)  634-9286 _ 


m 


Stertfcefest 

Elisa  Della  Rocco,  Regional  Account  Director 

Internet:  elisas@nww.com 

(508)  460-3333/PAX:  (508)  460-1237 

Mid-Atlantic 

Jacqui  DiBianca,  Regional  Account  Director 
Renee  Wise,  Account  Coordinator 
Internet:  jdibian,  rwise@nww.com 
(610)  971-1530/FAX:  (610)  975-0837 _ 

Midwest/Central 

Tom  Davis,  Associate  Publisher,  Eastern  Region 
Agata  Joseph,  Sr.  Account  Coordinator 
Internet:  tdavis,  ajoseph@nww.com 
(201)  634-2314/FAX:  (201)  712-9786 

Southeast 

Don  Seay,  Regional  Account  Director 
Renee  Wise,  Account  Coordinator 
Internet:  dseay,  rwise@nww.com 
(404)  504-6225/ FAX:  (404)  504-6212 


Northern  Galifornia/Northwest 

Sandra  Kupiec,  Associate  Publisher,  Western  Region 
Karen  Wilde,  Regional  Account  Director 
Courtney  Cochrane,  Regional  Account  Director 
Vanessa Tormey,  Regional  Account  Manager 
Jennifer  Hallett,  Account  Coordinator 
CyrilTalusan,  Account  Coordinator 
Internet:  skupiec,  kwilde,  ccochrane,  vtormey,  ctalusan, 
jhallett@nww.com 

(510)  768-2800/FAX:  (510)  768-2801  


Southwest/Rockies 

Becky  Bogart,  Regional  Account  Director 
Internet:  bbogart@nww.com 
(949)  250-3006/FAX:  (949)  833-2857 


Online/Integrated  Solutions 

Kevin  Normandeau,  Exec.  Vice  President/General  Mgr.,  Online 

Susan  Cardoza,  Associate  Publisher,  Online 

Scott  Buckler,  Online  Account  Director 

Stephanie  Gutierrez,  Online  Account  Manager 

Debbie  Lovell,  Online  Account  Manager 

Kate  Zinn,  Online  Account  Director 

Denise  Landry,  Account  Coordinator 

Lisa  Thompson,  Account  Coordinator 

Internet:  knormandeau,  scardoza,  sbuckler,  sgutierrez, 

dlovell,  kzinn,  dlandry,  lthompson@nww.com 

(508)  460-3333/FAX:  (508)  861-0467 

MARKETPLACE/EMERGING  MARKETS 

Donna  Pomponi,  Director  of  Emerging  Markets 

Enku  Gubaie,  Manager  of  Marketplace/Emerging  Markets 

Caitlin  Horgan,  Manager  of  Marketplace/Emerging  Markets 

Chris  Gibney,  Sales  Operations  Coordinator 

Internet:  dpomponi,  egubaie,  chorgan,  cgibney@nww.com 

(508)  460-3333/FAX:  (508)  460-1192 


M  Network  World,  Inc. 

IISTurnpike  Road,  Southborough,  MA  01772 
Phone:  (508)  460-3333 

TO  SEND  E-MAIL  TO  NWW  STAFF 

firstname_lastname@nww.com 

Evilee  Ebb,  CEO/Publisher 
John  Gallant,  President/Editorial  Director 
W.  Michael  Draper,  Chief  Operating  Officer 
Eleni  Brisbois,  Administrative  Planning  Manager 

FINANCE 

Mary  Fanning,  Vice  President  Finance 

Paul  Mercer,  Finance  Manager 

Betty  Amaro-White,  Event  Finance  Manager 

HUMAN  RESOURCES 

Patricia  Duarte,  Director  of  Human  Resources 
Eric  Cormier,  Sr.  Human  Resources  Generalist 

CUSTOM  MEDIA 

Michael  Siggins,  Associate  Publisher/Custom  Media 

MARKETING 

TerryAnn  Fitzgerald,  Sr.  Director  of  Customer  Experience 
Jeanne  Seltzer,  Marketing  Communications  Manager 
Barbara  Sullivan,  Senior  Research  Analyst 
Judy  Schultz,  Marketing  Design  Manager 
Cindy  Panzera,  Marketing  Designer 
Deborah  Vozikis,  Design  Manager  Online 
PRODUCTION  SERVICES 

Greg  Morgan,  Senior  Director,  Production  Services 
Karen  Wallace,  Senior  Director,  Advertising  Operations 
Mike  Guerin,  Manager  of  ProductionTechnologies 
JamiThompson,  Sr.  Production  Coordinator 
VeronicaTrotto,  Online  Operations  Coordinator 
Jane  Wilbur,  Online  AdTraffic  Coordinator 
Maro  Eremyan,  Advertising  Coordinator 
Christina  Pankievich,  Advertising  Coordinator 
CIRCULATION 

Richard  Priante,  Senior  Director  of  Circulation 

Bobbie  Cruse,  Subscriptions  Manager 

Mary  Mclntire,  Sr.  Manager,  Audience  Development 

RESEARCH 

Ann  MacKay,  Research  Director 

DISTRIBUTION 

BobWescott,  Distribution  Manager/(508)  879-0700 
IDG  LIST  RENTAL  SERVICES 

Amy  Bonner,  Account  Executive 

P.O.  Box  9151,  Framingham,  MA  01701-9151 

Toll  free:  (800)  434-5478  ext.  6026/Direct:  (508)  370-0826 

Fax:  (508)  370-0020 

SEMINARS.  EVENTS  AND  IDG  EXECUTIVE  FORUMS 

Neal  Silverman,  Executive V.  P.,  Events  &  Executive  Forums 

Mike  Garity,  Sr.  Director,  Marketing  4  Bus.  Development 

Dale  Fisher,  Senior  Event  Planner 

Jacqueline  DiPerna,  Event  Coordinator 

Karen  Bornstein,  Sales  Operations  Specialist 

Danielle  Bourke,  Event  Operations  Coordinator 

Andrea  D’ Amato,  Sr.  National  Sales  Director 

Kristin  Ballou-Cianci,  Regional  Account  Director 

Jennifer  Sand,  Regional  Account  Manager 

Cedric  Fellows,  Regional  Account  Manager 

Grace  Moy,  Exhibit  Sales  Manager 

Debra  Becker,  Dir.,  Marketing  &  Audience  Development 

Sara  Nieburg,  Senior  Marketing  Manager 

Dori  Smith,  Event  Database  Manager 

Buster  Paris,  Marketing  Specialist 

ONLINE  SERVICES 

Kevin  Normandeau,  Exec.  Vice  President/General  Mgr.,  Online 

Dan  Gallagher,  Sr.  Director,  Audience  Development 

Norm  Olean,  Director  of  Business  Development,  Online 

Adam  Gaffin,  Executive  Editor,  Online 

Melissa  Shaw,  Managing  Editor,  Online 

Jason  Meserve,  Multimedia  Editor 

Sheryl  Hodge,  Sr.  Online  Copy  Chief 

Jennifer  Moberg,  Online  Marketing  Program  Manager 

CLIENT  SERVICES 

Sharon  Stearns,  Director  of  Client  Services 

Frank  Coeiho,  Client  Services  Manager 

Leigh  Gagin,  Client  Services  Manager 

Julie  Steiner,  Client  Services  Manager 

INFORMATION  SYSTEMS 

W.  Michael  Draper,  Chief  Operating  Officer 

Tom  Kroon,  Director  of  Systems  Development 

Anne  Nickinello,  Senior  Systems  Analyst 

Puneet  Narang,  Manager  of  DatabaseTechnologies 

William  Zhang,  Senior  Software  Engineer 

Manav  Seghal,  Senior  Software  Engineer 

Rocco  Bortone,  Director  of  Network  IT 

Peter  Hebenstreit,  Senior  Network/Telecom  Engineer 

Brian  Wood,  Senior  Systems  Support  Specialist 

David  Mahoney,  Systems  Support  Specialist 

BUSINESS  SERVICES 

Mark  Anderson,  Business  Services  Supervisor 
Linda  Cavanagh,  Business  Services  Administrator 


Patrick  J.  McGovern,  Chairman  of  the  Board 

Pat  Kenealy,  CEO 

Bob  Carrigan,  President,  IDG  Communications 

Network  World  is  a  publication  of  IDG,  the  world's  largest 
publisher  of  computer-related  information  and  the  leading 
global  provider  of  information  services  on  information  tech¬ 
nology.  IDG  publishes  over  300  computer  publications  in  85 
countries.  One  hundred  million  people  read  one  or  more  IDG 
publications  each  month.  Network  World  contributes  to  the 
IDG  News  Service,  offering  the  latest  on  domestic  and  inter¬ 
national  computer  news, 


NETWQRKWORLD 


■  Editorial  Index 

■  A 

Masergy  Communications 

45 

an 

McAfee 

-iwiaajgwafi 

aa 

Meriton  Networks 

45 

MessageLahs 

23 

■  B 

Microsoft 

13.  J  37, 40 

p.3 

■  H 

37 

Nortel 

32 

■  C 

■  0 

PS 

OpTier 

3£L 

in 

Optinuity 

aa 

aa 

■  P 

EGE 

sa 

■  E 

AS 

■  Q 

93 

Qwest 

45 

■  F 

KB 

?s 

RLX 

31 

45 

■  S 

KG 

Savvis  Communications 

45 

a  as 

Siebel  Systems 

4Q 

pn 

Skype  , 

2a 

Sun 

a,  3A 

■  H 

Symantec 

fi  ,  P3 

HP 

31 

■  T 

■  | 

Teradata 

3Z 

IRM 

aa 

3Com 

2Q 

pi 

Trusted  Network  Technologies 

3Z 

AS 

■  u 

■  L 

LJniva 

33 

1  p.vol  3  Communications 

in 

■  V 

■  M 

Virtela 

4fi 

Mahi  Networks 

AS 

■  Advertiser  Index 

-  It 

Advertiser 


Page  i 


URL 


3COM  Corp 


47  3com.com/AdvancethenetwQrk 


Apani  Networks 


39 


www.apani.cQm/nwguide 


AT  &..T- 


63 


attr-om/innovatfi 


AVAYA 


36 


avaya.r.nm/diimmips 


Avocent 


71  http://infrastnictiirfi.ter.hweh.CQm 


Bantam  Instruments 


77  www.Bantamlnstruments.cQm 


Barracuda  Networks . . 

Brother  International. 


32  w.ww.barracudanetwQrks.CQm 

9_ www.hrnther.CQm 


frun  Microsystems  inc 

a_ suaconyoeiier 

66 

44 

84  wwwtrpnrimir.rn.rnm/snvwarp 

83 

17 

Zultys 

8L 

www  zulf  ys.r.nm/nw 

Captaris 


captaris.com/RF 


Network  World  -  wvm.networkworld.com 


ia 


CDW.cnm 


Z4 

2£L 

za 

46 

29 

6Z 

33 

41 

17  www  ihm  rnm/miridlpwarp/SOA 

55,  57,  59 

ia 

9-3 

35 

64-65 

mir.rnsnft.r.nm/spmrity/IT 

68 

Motorola 

49-43 

motQmla.com/wi4 

Network  lastniments  1 1 C. _ 79  www.nfitwnrklr«^rLimeots.CQm/analyze 


74 

51 

94-95 

30 

75 

77 

13,  91 

7 

76 

www. rnRP.com 

76 

 74 

Sonic  WALL 

Starling  Cnmmp-rce 

22 

www.stfirlingcommerce.com 

ADIC 

Adtran  Inc 

Akamai  Technologies 

American  Power  Conversion 

Arbor  Networks 

Arrow  Electronics 

Avaya  -  NJ 

CDW 

Ciena  Corp 
Cisco  Systems,  Inc. 

Client  Name 
Colubris  Networks,  Inc 
Coradiant 
Cyclades  Corp 
Dell  Computer  Corp 
EMC  Corp 
Emulex  Corp 

FaceTime  Communications 
Fluke  Networks 
Hitachi  Data  Systems 
HP-CA 
IBM 

IDG  World  Expo/LinuxWorld 
Iomega 

IronPort  Systems 
IXIA 

KaplanIT 
Lancope 
LAN  Desk 

LightPointe  Communications  Inc. 


Microsoft  Corp 
Mimosa  Systems 
NCS  Technology 
Neon  Software  Inc 
NetQoS,  Inc. 

Network  Associates 
Network  Physics 
Nokia-AK,  Inc. 

Novell 

Oracle  Corp 
Packeteer  Inc. 

Permeo 
Pulver.com 
Quest  Software 
Robot  icsTrends 
SafeNet 
SAS  Institute 
Server  Technology  Inc 
ShoreTel 

Siemens  Business  Comm. 
SPI  Dynamics 
Spirent  Communications 
SSH  Communications 
Systimax  Solutions 
Tacit  Networks 
Tripp  Lite 
Websense  Inc 
Wired  Red  Software 
Zultys 


These  indexes  are  provided  as  a  reader  service.  Although  every 
effort  has  been  made  to  make  them  as  complete  as  possible,  the 
publisher  does  not  assume  liability  for  errors  or  omissions. 
•Indicates  Regional  Demographic 


NetworicWortf 

Events  and  Executive  Forums 


Network  World  Events  and  Executive 
Forums  produces  educational  events 
and  executive  forums  worldwide, 
including  our  one  day  Technology  Tours, 
customized  on-site  training,  and  executive  forums  such  as  DEMO®, 
DEMOmobile®,  and  VORTEX,  as  well  as  the  DEMOietter  and  VORTEX 
Digest  newsletters.  For  complete  information  on  our  current  seminar 
offerings,  call  us  at  800-643-4668  or  go  to  www.networkworld.com/events. 


Publicize  your  press  coverage  in 
Network  World  by  ordering  reprints  of 
your  editorial  mentions.  Reprints 
make  great  marketing  materials  and 
are  available  in  quantities  of  500  and 
up.  To  order,  contact  Reprint 
Management  Services  at  (717)  399- 
1900  x128  or  E-mail:  networkworld@reprintbuyer.com. 


'"hr  V. " , 


microsystems 


microsystems 


CDW  701239 


CDW  678531 


COW  841060 


...  •  ■ 


■  : 

: 

y  r  .  - 

i *\~v*  •  . 


v-,  - 

•.  .•  &  . 


>  •  -  •  ,  V 

•  v..-  ;  ,■  ^ 


Additional  hard  drives  sold  separately 

Sun  Fire™  V20z  Server 

•  AMD  Opteron  Processor  (1.8GHz) 

•  Memory:  up  to  16GB 

•  Offers  high  CPU  density  in  a  1U  form  factor 

•  Runs  the  Solaris  Operating  System,  32-bit  and 
64-bit  Red  Hat  Linux,  64-bit  SUSE  Linux, 
Microsoft1  Windows/  and  VMware 

•  Supports  32-bit  and  64-bit  computing,  allowing 
you  to  maintain  your  existing  x86  infrastructure 
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Additional  hard  drives  sold  separately 

Sun  Fire™  V40z  Server 

•  Provides  linear  processor  scalability  and  high-speed 
I/O  throughput  for  x86  applications 

•  Dual  AMD  Opteron  844  Processors  (1.8GHz) 

•  Offers  the  ability  to  run  32-bit  and  64-bit  operating 
systems  and  applications— enabling  you  to  easily 
migrate  to  next-generation  64-bit  computing 

•  3U  rack  design  provides  high  rack  density, 
redundant  power  and  cooling,  RAID  storage 
and  Lights  Out  Management 
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Fluke  Networks 
EtherScope  Network  Assistant 

•  Helps  to  quickly  isolate  problems  on  the  network 

•  Identify  network  issues  before  they  escalate  to 
larger  problems 

•  Easy  to  use — intuitive  user-interface  with  Linux 
and  bright,  color  touch-screen  display 

•  Connects  to  any  copper  network  port  at  full 
duplex  10/100/Gigabit  speed 
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The  Networking  Solutions  You  Need  When  You  Need  Them. 

Upgrading  your  systems  means  upgrading  your  productivity.  At  CDW,  we  have  the  top-name  networking 
solutions  to  help  you  do  just  that.  Our  account  managers  provide  fast  answers  to  your  product  questions. 
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nhance  wireless  LAN  tool 


BY  JOHN  COX 

AirWave  this  week  pians  to 
release  a  version  of  its  software 
with  upgraded  GUIs  that  its  says 
makes  managing  multi-vendor 
wireless  LANs  easier. 

Version  4  of  the  AirWave 
Management  Platform  includes 
a  “Google-styie”  user  interface 
designed  for  help  desk  staff,  a  set 
of  Web  screens  to  show  more- 
detailed  information  about  the 
radio  environment  for  client 

WIRELESS  IN 
THE  ENTERPRISE 

Subscribe  to  our  free  newsletter. 

DocFinder:1028  www.networkworid.um 


Peering 

continued  from  page  10 

“None  of  our  users  in  the  field 
who  dial  up  can  get  their  email,” 
says  Steve  Bernard,  IT  support 
technician  for  Creative  Marketing 
Associates,  a  marketing  services 
company  in  Shelby  Township, 
Mich.  His  company  uses  a 
Cogent  T-l,  but  its  SBC  dial-up 
access  for  mobile  users  runs 
through  Level  3  servers.  Just  last 
week,  Creative  Marketing  Assoc¬ 
iates  had  DSL  installed  as  protec¬ 
tion  against  an  outage  on  its 
Cogent  T-l. The  company’s  IT  staff 
is  reconfiguring  its  network  to 
provide  an  alternate  route  in  for 
mobile  users,  over  its  DSL.  Until 
that  change  is  complete,  its 
remote  employees  will  remain 
cut  off. 

A  test  for  Cogent 

Crocker  Communications  Tech¬ 
nical  Director  Matthew  Crocker 
says  that  how  well  Cogent  han¬ 
dles  customer  service  during  this 
outage  will  affect  his  willingness 
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devices,  plus  the  ability  to  identi¬ 
fy  and  track  down  rogue  access 
points  via  a  wired  LAN. 

The  new  Help-Desk  Dashboard 
consists  of  screens  that  let  sup¬ 
port  staff  quickly  call  up  user 
information  based  on  a  user’s 
name.  The  software  associates 
user  name  with  client  device,  the 
access  point  to  which  it’s  con¬ 
nected,  media  access  control 
(MAC)  addresses  and  other  cur¬ 
rent  data  about  a  network’s  per¬ 
formance.  New  group  permis¬ 
sions  let  support  staff  see  only 
the  WLAN  segments  for  which 
they  have  responsibility. 

VisualRF  another  new  graphi¬ 
cal  feature,  builds  on  the  existing 


to  re-sign  with  the  company. 
Crocker  calls  himself  a  “reluc¬ 
tant”  Cogent  customer.  His  com¬ 
pany,  a  New  England  telecom 
provider  in  Greenfield,  Mass., 
signed  its  original  contract  with 
Verio,  which  later  sold  the  con¬ 
tract  to  Cogent.  Although 
Cogent’s  rates  are  much  less 
expensive  than  Verio’s,  Crocker 
Communications  is  locked  into 
paying  the  higher  rate  until  its 
contract  runs  out. 

“If  I  was  paying  regular  Cogent 
rates  I  probably  wouldn’t  be 
upset  right  nowf  Crocker  says. 
“But  if  they’re  going  to  make  me 
stay  with  the  Verio  contract,  then 
I’m  going  to  make  them  stay  with 
the  Verio  [service-level  agree¬ 
ment]  .” 

Crocker  Communications’Verio 
agreement  specifies  100%  net¬ 
work  uptime  and  minuscule 
packet  loss,  Crocker  says.  Right 
now,  he’s  tracking  complete  pack¬ 
et  loss  and  no  connectivity  to 
Level  3’s  network.  The  outage 
hasn’t  technically  affected 
Crocker  Communications’  opera¬ 
tions,  because  it  has  redundancy 
agreements  in  place  with  Sprint 
Nextel  and  Global  NAPS. 

Crocker  is  in  discussions  with 
his  Cogent  sales  representative 
and  would  like  the  company  to 
issue  credits  for  at  least  a  month 
of  service,  assuming  this  outage 
lingers. 

Cogent’s  Schaeffer  says  the 
company  won’t  be  offering  cred¬ 
its.  “For  our  customers  that  are 
single-homed,  we  apologize,  but 
we  did  not  cause  the  problem. 
There  is  nothing  we  can  do,”  he 
says.  Cogent  has  left  its  connec- 


Airwave  Wireless  Site  Plan 
(AWSP)  tool.  With  AWSP  users 
quickly  create  a  preliminary  site 
plan,  with  access  point  locations 
and  configurations  from  JPEG 
files,  Visio  documents  or  CAD 
drawings.VisualRF  then  automat¬ 
ically  updates  this  map  with  real¬ 
time  data  pulled  from  the  access 
points.  The  result  is  a  live,  color- 
coded  browser  view  of  the  com¬ 
plete  radio  environment. 

“This  will  be  very  handyf  says 
Paul  Watkins,  network  analyst 
with  the  Network  Services  group 
at  Newell  Rubbermaid,  the 
Atlanta-based  manufacturer  of 
consumer  products.  “We  like  to 
get  a  single  overall  view  of  the 


tions  to  Level  3  turned  on,  he 
says;  should  Level  3  decide  to 
resume  its  connection  with 
Cogent  at  any  time,  traffic  would 
once  again  start  flowing  between 
their  networks. 

Cogent  also  is  offering  to 
resolve  the  problem  by  taking  on 
Level  3’s  customers.  For  any  sin¬ 
gle-homed  Level  3  customer  in 
North  America  or  Europe,  Cogent 
is  offering  a  year  of  free  service  at 
the  same  bandwidth  currently 
being  supplied  by  Level  3. 

“The  idea  is  to  take  Level  3  as 
the  gatekeeper  out  of  the  middle 
and  let  their  customers  connect 
directly  to  ours,”  Schaeffer  says. 
“Also,  selfishly,  we  believe  that  at 
our  price  point,  their  customers 
will  decide  to  buy  additional 
bandwidth  and  become  paying 
customers  for  us." 

Level  3  spokeswoman  Daumier 
declined  to  comment  on 
Cogent’s  free  service  offer. 

Cogent  has  long  been  willing  to 
engage  in  brinksmanship  with  its 
peering  fights.  It  has  been 
through  similar  battles  with  AOL 
and  France  Telecom,  both  of 
which  ended  peering  agree¬ 
ments  with  Cogent.  Eventually, 
third-party  arrangements  were 
struck  that  let  Cogent’s  traffic 
connect  through  outside  net¬ 
works,  according  to  Schaeffer. 

Customers  expect  Cogent’s 
depeering  fights  to  continue; 
though  Crocker,  for  one,  says  he 
would  be  willing  to  put  up  with 
the  spotty  connectivity  if  he 
could  also  take  advantage  of 
Cogent’s  cut-rate  costs. 

“You  kind  of  get  what  you  pay 
for,”  he  says.  ■ 


net.” 

Newell  Rubbermaid  installed 
AirWave  software  just  more  than 
a  year  ago  to  manage  about  250 
access  points  in  about  25  loca¬ 
tions.  Most  of  the  access  points 
are  Cisco  Aironet,  but  some  sites 
have  Intermec  or  Symbol 
devices.  The  company  has  not 
yet  installed  the  new  software. 

Also  new  from  AirWave  is  an 
algorithm  for  automatic  radio 
channel  management.  The  soft¬ 
ware  factors  in  current  or  live 
radio  frequency  data  along  with 
historical  data  for  each  access 
point,  and  then  recommends 
optimal  channel  assignments. 
The  VisualRF  program  can  show 
administrators  a  before-and-after 
picture  of  the  network.  Once 
accepted,  the  recommendations 
are  applied  automatically. 

“As  we  install  more  access 
points,  we  find  we  have  to  do 
more  [radio]  tuning.  Automating 
that  would  be  an  important  time- 
saverf  Watkins  says. 

The  new  release  can  scan  for 
rogue  access  points  over  a 
WLAN,  so  it  can  detect  rogues 
even  when  they’re  set  up  at  a 
remote  office  or  installed 
beyond  the  range  of  an  autho¬ 
rized  access  point.  The  software 
scans  for  MAC  addresses,  consid¬ 
ers  several  parameters  that  might 
indicate  a  rogue  and  then  flags 
any  suspicious  devices. 

AirWave  Management  Platform 
4  is  scheduled  to  ship  later  this 
month,  starting  at  $3,500  for 
about  25  access  points.  ■ 
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Government 

continued  from  page  12 

turned  to  open  source  and  col¬ 
laboration  last  year  as  a  way  to 
cut  costs  when  faced  with  the 
task  of  replacing  more  than  150 
legacy  applications  running  on  a 
mainframe.  While  Stein  couldn’t 
estimate  how  much  the  city  will 
save  by  collaborating  with  states 
such  as  Massachusetts  and 
Rhode  Island,  he  estimates  the 
costs  without  collaboration 
would  be  about  $30  million. 

“I’m  trying  to  develop  a  collab¬ 
orative  development  process 
between  peer  governments,”  says 
Stein,  who  will  participate  in  the 
CIO  Perspectives  Panel  at  the 
conference.  “We  in  government 
have  similar  needs  so  why  could¬ 
n’t  we  develop  software  collabo- 
ratively?” 

Peter  Quinn,  CIO  for  the  com¬ 
monwealth  of  Massachusetts,  has 
put  the  spotlight  on  open  source 
by  pushing  for  open  standards. 
The  state  recently  finalized  a  plan 
to  scrap  Microsoft’s  Office  soft¬ 
ware  in  order  to  standardize  on 
the  Open  Document  Format  for 
Office  Applications. 

“Having  open  document  for¬ 
mats  and  leveraging  open  stan¬ 
dards  is  absolutely  critical  to 
what  we’re  doing,”  Kveton  says. 

Stein  agrees.  “For  government, 
collaboration  is  where  the  real 
value  [of  open  source]  is,”  he 
says.  “The  product  piece  is 
important . . .  but  by  far  the  value 
to  me  is  in  embracing  the  parts 
of  the  collaborative  develop¬ 
ment  methodology  that  made 
open  source  so  successful.”* 
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REPELS  INTRUDERS, 
EMBRACES  SIP  PROTOCOL 


Moving  to  VoIP  shouldn’t  create  security  issues  for  your  business.  It 
should  eliminate  them.  That’s  why  the  Zultys  MX250  IP  PBX  runs  on 

a  real-time  Linux  Operating  system  that  is 
secure  and  not  vulnerable  to  attack.  And. 
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since  encryption  is  a  standard  feature,  it  is  impossible  for  anyone  to  intercept 
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sensitive  communications.  Best  of  all,  the  Zultys  MX250  does,  all 
strai  ht  out  of  the  box.  To  learn  more  about 
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BAOKSPIN 


Mark  Gibbs 


Dealing  with  crazy  corporations 


i 


I’ve  just  seen  the  most 
remarkable  documen¬ 
tary  called  “The 
Corporation”  (www.net 
workworld.com, 
DocFinder:  9244),  which  is 
based  on  a  book  by  Joel  Bakan  called  The  Corporation: 
The  Pathological  Pursuit  of  Profit  and  Power. 

The  film  is  an  astounding  analysis  of  the  nature  of  big 
business,  and  one  of  its  primary  conclusions  is  underlined 
by  the  subtitle  of  the  book  —  that  large  corporations  are 
clinically  insane. 

Let  me  clarify  that:  In  law  a  corporation  is  an  individual 
similar  to  you  or  me.  When  you  compare  the  behavior 
and  characteristics  of  publicly  held,  large  corporations  to 
the  diagnostic  criteria  of  the  World  Health  Organization 
and  those  of  DSM-IY  a  standard  psychiatric  diagnostic 
tool  (DocFinder:  9245), you  find  that  these  organizations 
are  effectively  psychopathic  (DocFinder:  9246). 

Most  importantly,  this  isn’t  an  attribute  of  one  or  two 
large  corporations;  it  applies  to  the  majority  worldwide. 
Even  more  profoundly  it  appears  to  be  the  inescapable 
fate  of  public  corporations  because  their  essential  func¬ 
tion  is  to  be  profit-making  machines  that  relegate  all 
other  functions  and  attributes  (social,  cultural,  political, 
technological  and  economic  roles)  to  a  distant  second 
place.  Essentially,  the  end  (profits)  will  always  justify  the 
means  (whatever  it  takes)  because  that  is  how  corpora¬ 
tions  are  defined. 


A  few  weeks  ago  I  wrote  a  Backspin  column  titled 
“Google:  The  immaturity  of  huge  masses”  (DocFinder: 
9247)  about  the  nature  of  large  companies.  1  contended 
that  Google  wouldn’t  become  evil,  but  after  seeing  “The 
Corporation”  1  think  I  was  wrong.  What  I  was  wrong  about 
was  in  using  the  term  “evil.”  I  now  realize  that,  like  most 
other  public  corporations,  Google  can’t  help  but  become 
amoral  and  ultimately  psychopathic. 

You  might  wonder  if  this  comes  about  because  bad  peo¬ 
ple  get  to  run  what  could  have  been  good  companies,  but 
as  the  film  repeatedly  points  out,  the  gestalt  that  is  the  cor¬ 
poration  has  far  more  power  than  the  good  intentions  of 
any  individual  or  group  in  the  corporation.  Moreover, 
there  are  many  corporate  employees  who  are  all  too  will¬ 
ing  to  fall  in  with  the  psychopathic  program  that  the  cor¬ 
poration  creates. 

This  explains,  for  example,  why  Microsoft  always  tries  to 
lock  out  the  competition,  why  it  perverts  standards  to 
retain  market  control  and  why  it  finds  it  hard  to  stay 
away  from  monopolistic  practices  in  general.  It’s  not  that 
the  people  are  necessarily  bad,  it  is  the  corporation  they 
work  for  that  makes  their  efforts  have  bad  results. 

It  explains  why  all  major  telcos  and  cell  phone  service 
providers  have  lousy  customer  service.  (“We  don’t  care. 
We  don’t  have  to.  We’re  the  telephone  company’)  It  also 
explains  why  MCI  was  once  and  might  still  be  “rotten  to 
the  core”  as  I  discussed  in  a  previous  column 
(DocFinder:  9248). 

I  say  “might  still  be”  because  I  just  got  a  letter  from  an  ex- 


MCI  employee  who  claims  she  was  laid  off  in  January  last 
year  because  she  wouldn’t  go  along  with  certain  illegali¬ 
ties  that  were  being  committed.  While  we  can’t  vouch  for 
the  veracity  of  her  claim,  her  story  is  remarkable  for  the 
sheer  hostility  of  management’s  response. 

This  view  of  corporate  behavior  as  psychopathic  also 
illuminates  why  the  Recording  Industry  Association  of 
America  (RIAA)  is  so  aggressively  going  after  alleged  ille¬ 
gal  music  downloaders. 

A  recent  and  remarkable  example  of  this  is  Tanya 
Anderson,  a  42-year-old  disabled  single  mother  from 
Oregon  accused  of  downloading  gangster  rap  (see 
DocFinder:  9249  and  9250  for  the  full  story). The  RIAA 
allegedly  hired  a  company  called  MediaSentry  to  hack 
into  Anderson’s  computer  looking  for  evidence. 

Anderson  claims  she  was  contacted  by  the  RLAAs 
Settlement  Support  Center,  which  acknowledged  she  was 
probably  innocent.  But  they  told  her  she  should  settle 
because  the  RIAA  would  proceed  with  a  suit  against  her 
anyway  “to  discourage  others  from  attempting  to  defend 
themselves  against  unwarranted  litigation." 

So  now  that  we  know  why  these  companies  act  as  they 
do,  we  can  be  more  rational  and  less  surprised  when  they 
do. The  fact  is  the  chance  of  any  change  in  the  way  corpo¬ 
rations  behave  is  next  to  zero,  at  least  in  our  lifetimes.  Until 
then,  forewarned  is  forearmed. 

Are  you  armed?  Tell  at  backspin@gibbs.com  or  on 
Gibbsblog(www.networkworld.com/weblogs/gibbsblog). 
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News,  insights,  opinions  and  oddities 


Paul  McNamara 


Life  in  VG  land 

The  venture  capital  industry  is  technology's  canary  in 
a  coal  mine,  so  keeping  an  eye  on  its  health  makes 
sense.  I  recently  had  an  opportunity  to  sit  in  on  a  pre¬ 
sentation  by  Mark  Heeson,  president  of  the  National 
Venture  Capital  Association,  and  he  offered  a  number 
of  insights  worth  sharing  here. 

First  off,  Heeson  says,  reports  that  the  canary  is  looking  much  like  the  “ex-parrot” 
of  Monty  Python  fame  are  way  off  the  mark.  Despite  the  fact  that  the  pile  of  dollars 
being  divvied  up  by  venture-backed  companies  remains  dramatically  below  Internet 
bubble  levels,  the  number  of  venture  capital  firms  has  remained  relatively  stable. 
Venture  capital  funds  will  dole  out  about  $25  billion  this  year  and  some  $70  billion 
from  2003  through  2005,  as  compared  with  about  $210  billion  during  a  three-year 
span  in  the  midst  of  that  bygone  euphoria. 

“We  have  intense  interest  from  [limited  partners]  in  investing  in  this  asset  class 
right  now,"  Heeson  says.  “We’ll  see  about  $25  billion  being  raised  this  year  by  ven¬ 
ture  capitalists,  and  that  could  easily  have  been  $100  billion." 

As  a  result,  would-be  investors  are  finding  themselves  waving  more  money  at 
funds  than  the  funds  are  willing  to  take.  Exacerbating  that  squeeze  is  the  fact  that 
more  funds  are  accepting  foreign  dollars. 

“You’re  seeing  some  funds,  which  in  the  past  took  no  foreign  money,  and  are  now 
taking  25%  of  their  funds  from  foreign  [sources].  And  who’s  that  coming  at  the 
expense  of?  A  lot  of  it  is  coming  at  the  expense  of  your  public"  pension  funds. 

Those  public  institutions  also  are  having  their  investment  strategies  hampered  by 
federal  regulations  such  as  the  Freedom  of  Information  Act.  As  the  venture  commu¬ 
nity  finds  smaller  funds  possible  and  prudent,  the  desire  to  raise  money  absent  the 
strictures  of  public  disclosure  becomes  more  tempting.  Venture  capitalists  and  their 
start-ups  are  valuing  secrecy  more  —  and  longer. 

“They’re  saying  we  don’t  want  anybody  to  know  about  these  early-stage  deals,” 
Heeson  says.  "We’ll  carry  the  first  round  on  our  own,  maybe  even  the  second  if  we 


can,  and  then  once  we  think  there’s  something  there  then  we’ll  take  this  thing  out 
with  other  venture  capital  firms  or  bring  it  out  into  the  public  domain.” 

Not  only  have  the  dynamics  of  the  front  end  changed  for  venture  capitalists,  the 
back  end  doesn’t  look  at  all  like  it  used  to  either.Those  sexy  initial  public  stock 
offerings  that  made  the  bubble  years  so  bubblelicious  have  all  but  disappeared,  with 
only  20  IPOs  of  venture-backed  companies  in  the  first  six  months  of  this  year. 

"That  is  pretty  abysmal,  and  many  of  those  venture-backed  IPOs  have  not  done 
terribly  well  since  they’ve  gone  public,”  Heeson  says.  "Only  about  50%  of  them  are 
trading  above  their  opening  level.  It’s  still  a  real  poor  environment  to  go  public  right 
now.” 

Curiously  enough,  however,  this  abysmal  record  isn't  stopping  a  lot  of  start-ups 
from  filing  the  paperwork  necessary  to  launch  a  stock  offering.  It’s  apparently  a  bit 
of  a  head-fake  combined  with  cagey  salesmanship. 

“What  we’re  seeing  more  and  more  of  is  this  double-tracking  strategy: They're 
saying,  ‘I’m  registering  to  go  public,  but  I’m  not  really  going  public  —  I'm  for  sale. 
And,  by  the  way,  because  I've  been  able  to  register,  I’m  Sarbanes-Oxley  compliant, 
so  I'm  clean.’ " 

This  approach  offers  a  better  exit  scenario  than  an  IPO,  Heeson  says,  primarily 
because  the  mergers-and-acquisitions  climate  is  much  more  hospitable. The  M&A 
tally  has  held  steady  at  about  350  deals  annually  for  several  years  now  —  and  those 
companies  that  are  being  bought  are  fetching  more  money,  too. 

"We  actually  have  a  very  good  M&A  market  right  now.  We're  seeing  very  strong 
acquisitions  across  the  board  in  all  technologies:  life  sciences,  communications,  IT,” 
Heeson  says.  “Two  years  after  the  bubble  we  had  literally  not  a  single  acquisition 
where  you  got  more  than  four  times  your  [invested]  money.This  year  we’re  going  to 
have  at  least  a  third  of  all  acquisitions  at  four  times  the  money  put  in,  and  many  of 
them  are  going  to  be  10  times  what  was  put  in." 

Sounds  healthy  enough. 

Care  to  venture  an  opinion? The  address  is  buzz@nww.com. 
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What  protects 
employees  outside? 


View  the  latest  Websense  Security  Labs  webcast: 

"Six  Degrees  of  Spyware" 
www.  websensesecuritylabs.  com/webcast 


It's  no  surprise;  employees  are 
often  unaware  of  the  threats  that  put 
the  security  of  their  laptops — and  your 
network — at  risk  every  day. 


Websense  Remote  Filtering  extends  your 
usage  policies  to  the  mobile  workforce, 
keeping  you  protected  from  external 
web  threats  anytime,  anywhere. 

Close  the  security  gap. 

Download  your  free  evaluation  today. 
www.websense.com/remote 


SECURING  PRODUCTIVITY™ 
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DON’T  LET 
SPYWARE 
SABOTAGE  YOUR 
ENTERPRISE. 


The  next  threat  is  no  threat  with  Trend  Micro. 

Expose  and  eradicate  spyware  with  Trend  Micro's  Enterprise-class,  multi-level, 
anti-spyware  solutions.  They're  the  only  solutions  that  block  and  clean  at  the  gateway — 
the  most  effective  point  of  control.  Trend  Micro.  #1  global  leader  at  the  gateway  and 
industry  pioneer.  Whether  it's  a  virus,  worm,  spyware,  or  spam,  we've  got  you  covered. 

For  a  FREE  evaluation  and  IDC  whitepaper, 
go  to  www.trendmicro.com/spyware 


